Skip to content

Release v3.3.0#157

Merged
RomiconEZ merged 429 commits intoreleasefrom
release-3-3-0
Jul 27, 2025
Merged

Release v3.3.0#157
RomiconEZ merged 429 commits intoreleasefrom
release-3-3-0

Conversation

@RomiconEZ
Copy link
Member

@RomiconEZ RomiconEZ commented Jul 15, 2025
edited
Loading

Changelog v3.3.0

  1. Redesigned the output of testing parameter presets. Added the following presets: all, owasp:llm01, owasp:llm07, owasp:llm09, llm, vlm, eng, rus.
  2. Added a new Linguistic Sandwich attack. An adversarial prompt in a low-resource language is sandwiched between benign prompts in other languages.
  3. In the System Prompt Leakage attack, the heuristiс evaluation has been replaced with LLM-as-a-judge. This checks the similarity between the system's output and the intended prompt based on the system description.
  4. The static Past Tense attack has become the dynamic Time Machine attack. The attacking model now alters the temporal context of the adversarial prompt.
  5. Add new tag - model: llm / vlm
  6. README update - Enterprise Version announce
  7. Other minor fixes and improvements.

nizamovtimur and others added 30 commits December 10, 2024 15:14
@nizamovtimur
Merge pull request #44 from RomiconEZ/add-data-fit-to-num_attempts
d8d2203 
add fitting datasets to `num_attempts`
@RomiconEZ
Add WhatsApp example in README
3f9238d
@RomiconEZ
Add WhatsApp example in Doc
c000a1a
@RomiconEZ
WhatsApp example
87b55f3
@RomiconEZ
Add model_description to ClientWhatsAppSelenium init
ccb2159
@nizamovtimur
Merge pull request #45 from RomiconEZ/whatsapp-example
32473ab 
Whatsapp example
@RomiconEZ
Main - release v1.1.0 (#46)
847805c 
* Set dependency - httpx == 0.27.2

* Release v1.1.0

* Delete deprecate img and and chroma-data to gitignore
@RomiconEZ
Release v1.1.1 (#47)
08d595b
@RomiconEZ
Release v1.1.1
c8156be
@RomiconEZ
Merge branch 'release'
5a59018 
Union history
@nizamovtimur
rewrite all examples notebooks in english
e50a277
@nizamovtimur
Merge pull request #50 from RomiconEZ/translate-examples
b275bcc 
rewrite all examples notebooks in english
@nizamovtimur
fix attack model system prompt
b2511b9
@nizamovtimur
Merge pull request #52 from RomiconEZ/small-fix-examples
c5c2ac5 
fix attack model system prompt
@nizamovtimur @RomiconEZ
Multi stage attack (#51)
da2b320 
* Implement class "MultiStageInteractionSession" for multistage attack. Add new functionality for ChatSession class.

* Add multistage to the sycophancy and logical tests

---------

Co-authored-by: Roman <roman.nieronov@mail.ru>
@nizamovtimur
move stop_criterion from loop
651999f
@nizamovtimur
fix sycophancy and logical_inconsistencies naming
f7c7e69
@nizamovtimur
rename translation.py to linguistic.py
d3bfe8c
@nizamovtimur
Merge pull request #54 from RomiconEZ/refactor-multistages
28db862 
Refactor sycophancy and logical_inconsistencies and linguistic
@RomiconEZ
Add refine_attack_prompt func to MultiStageInteractionSession.
86541a6
@RomiconEZ
Add refine_tested_client_prompt and refine_attacker_prompt funcs to M…
584d362 
…ultiStageInteractionSession.
@nizamovtimur
enhance whatsapp example
830b408
@nizamovtimur
sync logic with handling tested_client_response before passing it to …
a10b227 
…the attacker
@nizamovtimur
pre-commit
0a3a55c
@nizamovtimur
Merge pull request #55 from RomiconEZ/refine_attack_prompt
87e44cd 
Add refine_attack_prompt func to MultiStageInteractionSession.
@nizamovtimur
Merge pull request #56 from RomiconEZ/enhance-whatsapp-example
a854cda 
enhance whatsapp example
@NickoJo @nizamovtimur
added harmful_behavior_multistage.py
3adc800
@NickoJo @nizamovtimur
corrected harmful_behavior_multistage.py according to the new logic i…
1c63774 
…n chat_client
@NickoJo
corrected attack
6bb723b
@NickoJo
corrected attack
fed170e
@RomiconEZ RomiconEZ self-assigned this Jul 15, 2025
nizamovtimur
nizamovtimur approved these changes Jul 15, 2025
View reviewed changes
Copy link
Member

@nizamovtimur nizamovtimur left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Changelog v3.2.0..v3.3.0

  1. Redesigned the output of testing parameter presets. Added the following presets: all, owasp:llm01, owasp:llm07, owasp:llm09, llm, vlm, eng, rus.
  2. Added a new Linguistic Sandwich attack. An adversarial prompt in a low-resource language is sandwiched between benign prompts in other languages.
  3. In the System Prompt Leakage attack, the heuristiс evaluation has been replaced with LLM-as-a-judge. This checks the similarity between the system's output and the intended prompt based on the system description.
  4. The static Past Tense attack has become the dynamic Time Machine attack. The attacking model now alters the temporal context of the adversarial prompt.
  5. Other minor fixes and improvements.

@NickoJo
Copy link
Member

NickoJo commented Jul 15, 2025

  1. Completely

это лучше убрать, смешное слово

@nizamovtimur
Fix NoneTypes and AutoDAN-Turbo (#158)
9a4122e 
Add NoneType checking for Judge Model responses fix AutoDAN-Turbo
@nizamovtimur nizamovtimur self-requested a review July 21, 2025 11:03
nizamovtimur
nizamovtimur requested changes Jul 21, 2025
View reviewed changes
Copy link
Member

@nizamovtimur nizamovtimur left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

требуется добавить в этот релиз фикс из #158
описание релиза можно оставить таким же, как и в моем прошлом ревью

@RomiconEZ RomiconEZ requested a review from Copilot July 27, 2025 12:48
Copilot AI reviewed Jul 27, 2025
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This is a major version release (v3.3.0) that introduces significant improvements to attack preset handling, adds new attack methods, and enhances the overall framework functionality.

  • Replaced parameter-based configuration with a dynamic preset system supporting multiple categories and OWASP classifications
  • Added new attack modules including Time Machine, Linguistic Sandwich attacks
  • Enhanced existing attack modules with improved error handling and model compatibility tags

Reviewed Changes

Copilot reviewed 54 out of 56 changed files in this pull request and generated 5 comments.

Show a summary per file
File Description
src/llamator/__version__.py Version bump to 3.3.0
src/llamator/utils/test_presets.py Complete rewrite of preset system with dynamic generation based on attack tags
src/llamator/utils/attack_params.py Refactored to support new preset system and improved parameter handling
src/llamator/attacks/time_machine.py New attack module for temporal framing vulnerabilities
src/llamator/attacks/linguistic_sandwich.py New attack exploiting attention blink in low-resource languages
tests/print_test_preset_test.py New utility script for displaying preset configurations
Multiple attack files Added model compatibility tags and improved descriptions

@nizamovtimur nizamovtimur self-requested a review July 27, 2025 15:38
@RomiconEZ RomiconEZ merged commit 105e215 into release Jul 27, 2025
4 of 5 checks passed
@RomiconEZ RomiconEZ deleted the release-3-3-0 branch September 7, 2025 15:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@nizamovtimur nizamovtimur nizamovtimur approved these changes

@NickoJo NickoJo NickoJo approved these changes

Assignees

@RomiconEZ RomiconEZ

Labels

release

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@RomiconEZ @NickoJo @nizamovtimur @Shine-afk @3ndetz @ti3c2

Comments