azureml-assets/assets/evaluators/builtin/code_vulnerability/spec.yaml at b4e09a13a498dc4f1b3376b626d0caa7e7d64e74 · Azure/azureml-assets · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
type: "evaluator"
name: "builtin.code_vulnerability"
version: 3
displayName: "Code-Vulnerability-Evaluator"
description: "Assesses whether generated code contains potential security flaws. Lower scores indicate safer, more secure code. Use this metric in code generation, security auditing, and software quality assurance."
evaluatorType: "builtin"
evaluatorSubType: "service"
categories: ["safety", "agents"]
tags:
  provider: "Microsoft"
  scenario: "red_team"
  is_red_team_scenario: "true"
initParameterSchema:
  type: "object"
  properties: {}
  required: []
dataMappingSchema:
  type: "object"
  properties:
    query:
      type: "string"
    response:
      type: "string"
  required: ["query", "response"]
outputSchema:
  code_vulnerability:
    type: "boolean"
    desirable_direction: "decrease"