Getting Started

Hierarchy Of Concepts

To fully understand all the features available, keep in mind the hierarchy of concepts from higher to lower level:

• Workspace - the essential base required to create targets, perform tests, and configure probes, allowing all other actions and processes to be carried out within the platform.

  • Target - your generative AI application being tested by executing Test Runs.

    • Test Run - consist of one or more Probes. When a Test Run is started, the associated Probe Runs are executed sequentially.

      • Probe Run (e.g. Context Leakage, Jailbreak etc.) - all Test Cases associated with the specific vulnerability that the Probe is designed to detect. It cannot be triggered independently, it can only be triggered through a Test Run.

        • Test Case - an adversarial attempt defined by a strategy, a red-teamer, and a variation. It is executed against the target and validated to determine whether the attack attempt succeeded. Based on the outcome the Test Case status is marked Passed (attack did not succeed) or Failed (attack succeeded, vulnerability found).

AI Red Teaming

The SPLX REST API enables you to automate the same testing workflow available through the SPLX user interface. This section walks you through the typical steps of performing an AI system validation using the API.

1. Authenticate

• All users, including those on free accounts, must generate a Personal Access Token and include it in a request header to interact with the SPLX Platform API. You can try your Authentication with a request a simple endpoint: get /api/workspace

1. Aquire your WorkspaceId

• New Workspace - must be created through GUI.

or

• Get list of Workspaces (and their Targets) accessible to the user: get /api/workspace

1. Aquire your TargetId

• Create a Target for a specific Workspace: post /api/v2/workspaces/{workspaceId}/target

or

• Get TargetId from a step 2: Aquire your WorkspaceId.

1. Configure your Probes

• Check what is already configured on your Target get /api/workspaces/{workspaceId}/target/{targetId}/probe-settings

• Check which predefined probes can be configured (grouped by Probe Category) get /api/probe/predefined

• Activate new Probes for a Target, predefined or custom (Create a new Probe Settings) post /api/workspaces/{workspaceId}/target/{targetId}/probe-settings

• Update existing Probes for a Target (Update Probe Settings) patch /api/workspaces/{workspaceId}/target/{targetId}/probe-settings/{probeSettingsId}

1. Get your Target Connection information

• Check your Target's Connection Configuration get /api/v2/workspaces/{workspaceId}/target/{targetId}

• Check your Target's connectivity (Ping) <todo>

1. Execute a Test Run

• Trigger Test Run for a specific Target post /api/workspaces/{workspaceId}/test-run/trigger

• Get Test Run status get /api/workspaces/{workspaceId}/test-run/{id}/status