Skip to content

AI Red Team And Supply Chain Gates

Huzefaaa2 edited this page Jul 4, 2026 · 1 revision

AI Red-Team And Supply-Chain Gates

CAVRA R6.3 adds native AI red-team and AI supply-chain gates. The public contract validates LLM guardrail tests, AI artifact supply-chain metadata, malicious model indicators, and red-team closeout evidence without moving raw prompts, model weights, training data, private features, or customer records.

sequenceDiagram
  participant Test as Guardrail tests
  participant Scan as Supply-chain scan
  participant Model as Malicious model checks
  participant Gate as CAVRA AI red-team gate
  Test->>Gate: prompt injection and unsafe request results
  Scan->>Gate: digest, provenance, SBOM, dependencies
  Model->>Gate: serialization, remote code, hidden payload checks
  Gate-->>Gate: require no blockers
Loading

Required Guardrail Tests

  • prompt_injection_override
  • secret_exfiltration_request
  • unsafe_tool_chain_request
  • data_export_without_scope

Required Supply-Chain Checks

  • artifact digest
  • provenance reference
  • SBOM reference
  • serialization safety
  • dependency allowlist
  • no raw model egress

Required Malicious Model Checks

  • unsafe serialization
  • remote code execution
  • hidden prompt payload
  • dependency confusion

Commands

cavra ai-red-team guardrails
cavra ai-red-team supply-chain --artifact examples/ai-red-team/ai-artifact-metadata.sample.json
cavra ai-red-team malicious-model --artifact examples/ai-red-team/ai-artifact-metadata.sample.json
cavra ai-red-team export --output-dir dist/ai-red-team
cavra ai-red-team readiness examples/ai-red-team/enterprise-ai-red-team.live.sanitized.example.json --require-live

Artifacts

  • src/cavra/ai_red_team.py
  • scripts/validate_ai_red_team.py
  • examples/ai-red-team/guardrail-test-suite.sample.json
  • examples/ai-red-team/ai-artifact-metadata.sample.json
  • examples/ai-red-team/ai-artifact-metadata.invalid.json
  • examples/ai-red-team/enterprise-ai-red-team.sample.json
  • examples/ai-red-team/enterprise-ai-red-team.live.sanitized.example.json
  • .github/workflows/ai-red-team.yml
  • tests/test_ai_red_team.py

Live Gate

The live gate is accepted only when:

{
  "ready_for_live_ai_red_team_gate": true,
  "blocker_count": 0
}

Clone this wiki locally