SOTAVerified

Bypassing the Safety Training of Open-Source LLMs with Priming Attacks

2023-12-19Code Available1· sign in to hype

Jason Vega, Isha Chaudhary, Changming Xu, Gagandeep Singh

Code Available — Be the first to reproduce this paper.

Reproduce

Code

Abstract

With the recent surge in popularity of LLMs has come an ever-increasing need for LLM safety training. In this paper, we investigate the fragility of SOTA open-source LLMs under simple, optimization-free attacks we refer to as priming attacks, which are easy to execute and effectively bypass alignment from safety training. Our proposed attack improves the Attack Success Rate on Harmful Behaviors, as measured by Llama Guard, by up to 3.3 compared to baselines. Source code and data are available at https://github.com/uiuc-focal-lab/llm-priming-attacks.

Reproductions