Skip to content

[Feature] Add RAG retrieval poisoning test scenarios #2156

Description

@lxcxjxhx

Summary

Add built-in test scenarios for RAG retrieval poisoning attacks to PyRIT's scenario library.

Problem

RAG systems are vulnerable to retrieval poisoning where malicious content is injected into the knowledge base. PyRIT currently lacks dedicated scenarios for testing this attack surface.

Proposed Implementation

  • New file: pyrit/scenario/scenarios/rag_retrieval_poisoning.py
  • Predefined attack vectors for retrieval poisoning
  • Integration with existing attack executor
  • Documentation in scenario docstrings

Use Case

Security teams can use these scenarios to test RAG-based LLM applications against known poisoning attack patterns.

References

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions