Genai Red Team Handbook: Sandboxes for Local LLM and RAG Systems #765
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
felipepenha
changed the title
felipepenha
force-pushed
the
genai-red-team-handbook
branch
from
81f1abc to
beb509c
Compare
Author
|
Ready for review. |
felipepenha
force-pushed
the
genai-red-team-handbook
branch
from
e3aba2c to
635e3de
Compare
felipepenha
requested review from
GangGreenTemperTatum,
cybershujin,
guerilla7,
hoeg,
itskerenkatz,
jsotiro,
kenhuangus,
talesh and
virtualsteve-star
as code owners
felipepenha
force-pushed
the
genai-red-team-handbook
branch
from
3fd8ee5 to
635e3de
Compare
added 15 commits
December 1, 2025 11:35
…nt accessing LLM API.
felipepenha
force-pushed
the
genai-red-team-handbook
branch
from
ca801ff to
ea6e43f
Compare
Author
|
I was merging main into this branch and, then, rebasing and it seems that this caused 9 code owners to unrelated code to be accidentally added to this PR, during the process. It looks like I don't have the access level required to exclude the extra reviewers, so you will have to pardon me @guerilla7 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Genai Red Team Handbook: Sandboxes for Local LLM and RAG Systems
Key Changes:
List major changes and core updates
sandboxes.initiatives/genai_red_team_handbook/sandboxes/.initiatives/genai_red_team_handbook/exploitation/.Keep each line under 80 characters
Focus on the "what" and "why"
sandboxes/llm_local/: A local sandbox environment that mocks an LLM API (compatible with OpenAI's interface) using a local model (via Ollama). This template is useful for testing client-side interactions, prompt injection vulnerabilities, and other security assessments without relying on external, paid APIs. Additionally, it allows developers to customize the underlying LLM and orchestrate sophisticated GenAI pipelines, incorporating features such as RAG and guardrail layers, as necessary.sandboxes/RAG_local/: A comprehensive RAG (Retrieval-Augmented Generation) sandbox that includes a mock Vector Database (Pinecone compatible), mock Object Storage (Amazon S3 compatible), and a mock LLM API (OpenAI compatible). This environment is specifically designed for Red Teaming RAG architectures, allowing researchers to explore vulnerabilities such as embedding inversion, data poisoning, and retrieval manipulation in a controlled, local setting.exploitation/example/: This directory contains an example of a red team operation against a local Large Language Model (LLM) sandbox. It demonstrates how to spin up Gradio connected to a mock LLM API and execute an adversarial attack script to test safety guardrails.Added: