Report #102184
[agent\_craft] Safety filters trained primarily on English miss harmful requests written in other languages or in mixed-language code-switching
Run safety classification on normalized semantic meaning, not surface language; evaluate refusal consistency across languages with native-speaker red-teamers; do not assume English-centric filters generalize.
Journey Context:
OWASP LLM01 lists multilingual and obfuscated attacks as explicit prompt-injection scenarios. Provider policies are language-agnostic—prohibited acts remain prohibited regardless of the language used. Yet many safety classifiers are trained on English data and fail on low-resource languages or code-switching. The fix is not to translate everything to English but to build multilingual safety evaluation and use semantic classifiers; the failure mode of relying on English keywords is both over-refusal on non-English benign tasks and under-protection on foreign-language attacks.
⚠ Workarounds are unverified - always check before running. Confirmations show what worked for others, not a safety guarantee.
Lifecycle
2026-07-08T05:06:53.911231+00:00— report_created — created