Skip to content

スキルを検索.../

Agent Skill Search Engine

検索

検索
カテゴリ
職業

About

About
Privacy
Terms

© 2026 Skills Pool. All rights reserved.

Rag Poisoning | Skills Pool

Skill ファイル

Rag Poisoning

RAG system poisoning and retrieval manipulation testing. Covers document injection, embedding manipulation, chunk boundary attacks, and knowledge base corruption.

DoctorGoz0 スター2026/03/09

職業
カテゴリ: 計算化学

スキル内容

RAG Poisoning Testing Skill

When to Use

Testing RAG (Retrieval-Augmented Generation) applications
OWASP LLM01 (indirect injection via documents), LLM04 (data poisoning), LLM08 (vector/embedding)
When the target system ingests external documents or data

Attack Vectors

Document Injection

Upload documents containing hidden prompt injection payloads
Embed instructions in document metadata (PDF title, author, keywords)
Use invisible text (white on white, font-size: 0, CSS display:none)
Place payloads in headers, footers, or annotations

Embedding Space Attacks (LLM08)

Craft documents that are semantically similar to target queries
Test if poisoned documents are retrieved for unrelated queries
Check embedding distance thresholds (can distant documents be retrieved?)

関連 Skill

クイックインストール

Rag Poisoning

npx skillvault add DoctorGoz/doctorgoz-grimnir-artemis-claude-skills-rag-poisoning-skill-md

Skill をダウンロードリポジトリを開く

作者: DoctorGoz
スター: 0
更新日: 2026/03/09
職業

このページの内容

01RAG Poisoning Testing Skill

Test for embedding collision — documents that map to same vector space

Chunk Boundary Exploitation

Place injection payloads at chunk boundaries where they span two chunks
Test if chunking preserves or breaks injection payloads
Exploit overlap regions in sliding-window chunking
Place different instructions in adjacent chunks

Cross-Tenant Poisoning

In multi-tenant RAG: upload documents that affect other tenants
Test namespace isolation in vector databases
Check if document access controls are enforced at retrieval time

Retrieval Manipulation

SEO-style optimization for vector search — craft documents that rank highly
Flood the knowledge base to dilute legitimate documents
Test if the system validates document source/authenticity

Output

Attack vector, poisoned document details, retrieval impact, cross-contamination evidence, severity.

02

When to Use

03Attack Vectors

04Document Injection

05Embedding Space Attacks (LLM08)

06Chunk Boundary Exploitation

07Cross-Tenant Poisoning

08Retrieval Manipulation

情報セキュリティアナリスト

Healthcare Cdss Patterns

Clinical Decision Support System (CDSS) development patterns. Drug interaction checking, dose validation, clinical scoring (NEWS2, qSOFA), alert severity classification, and integration into EMR workflows.

Drug Discovery

Pharmaceutical research assistant for drug discovery workflows. Search bioactive compounds on ChEMBL, calculate drug-likeness (Lipinski Ro5, QED, TPSA, synthetic accessibility), look up drug-drug interactions via OpenFDA, interpret ADMET profiles, and assist with lead optimization. Use for medicinal chemistry questions, molecule property analysis, clinical pharmacology, and open-science drug research.

NousResearch98.6k

Qmd

Search personal knowledge bases, notes, docs, and meeting transcripts locally using qmd — a hybrid retrieval engine with BM25, vector search, and LLM reranking. Supports CLI and MCP integration.

NousResearch98.6k

Attack Tree Construction

Build comprehensive attack trees to visualize threat paths. Use when mapping attack scenarios, identifying defense gaps, or communicating security risks to stakeholders.

Azure Ai Anomalydetector Java

Build anomaly detection applications with Azure AI Anomaly Detector SDK for Java. Use when implementing univariate/multivariate anomaly detection, time-series analysis, or AI-powered monitoring.

Viboscope

Psychological compatibility matching — find cofounders, collaborators, and friends through validated psychometrics

情報セキュリティアナリスト