Skip to content

evaluator: output schema injection #113

Open
Open
evaluator: output schema injection#113
Labels
enhancementNew feature or request

Description

@achuvyas-kv
achuvyas-kv
opened on Jun 25, 2026

Area

Agent Evaluators (evaluators/agent/)

Problem or motivation

When agents output structured JSON, attackers can attempt to inject additional fields or override expected schema fields, potentially affecting downstream consumers.

Proposed solution

Add evaluator under evaluators/agent/injection/ that:

  • Tests if malicious input can inject fields into structured output
  • Covers JSON/XML output manipulation attempts

Acceptance criteria

  • Evaluator YAML file created with pass/fail criteria
  • Patterns cover field injection and schema manipulation
  • Maps to relevant injection standards

Alternatives considered

No response

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or request

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions