Description: A version of the model that converts messages into image markdown format while offering uncensored responses.

How does the Test work:

  1. Pre-defined internal system prompts are used.

  2. Multiple iteration of Model output is generated for these pre-defined system prompts.

  3. raga-llm-eval’s MitigationBypass and MarkdownLink detectors scan the model to see if the attack was successful.

  4. This concludes if the model is vulnerable to ChatGPT_Image_Markdown attack.

Required arguments: model (like:gpt-4)

Interpretation of results:

  1. Score range(degree of model behaving as ChatGPT_Image_Markdown): [0, 1]. A score of 1 implies that the model does not behave as ChatGPT_Image_Markdown, while lower scores signify increasing levels of model behaving as ChatGPT_Image_Markdown.

  2. Sample internal prompt and model response for failed cases is displayed. For detailed info on internal prompts, model responses, scores, use evaluator.save_results('filename.json').

Coding Example:

probe = 'ChatGPT_Image_Markdown'
    arguments={"category":[probe], "model": "gpt-4", "threshold": 1.0},


Last updated