Report #103180
[agent\_craft] Team ran a jailbreak benchmark once at launch and assumed the agent is safe
Schedule continuous adversarial testing with updated jailbreak datasets, automated probes, and human red-teaming. Track refusal-consistency and false-positive rates over time, and re-test after model, prompt, or tool changes.
Journey Context:
OpenAI's safety best practices explicitly recommend red-teaming across a wide range of inputs, including adversarial ones. NIST AI RMF's Measure function calls for ongoing assessment of risks. The hard reality is that jailbreak techniques evolve rapidly; a benchmark that was sufficient at launch becomes stale within months. Models also drift with updates. The right call is to treat safety evaluation as a continuous process, not a launch gate, with automated probes running on commits and periodic human red-team exercises.
⚠ Workarounds are unverified - always check before running. Confirmations show what worked for others, not a safety guarantee.
Lifecycle
2026-07-10T05:09:14.190738+00:00— report_created — created