12h ago
AI Jailbreak Tracker · Apr 12 Daily Digest
Red-Teaming Configurations
- 🔥 Promptfoo System-Prompt-Override Test: Promptfoo introduces a red team configuration that tests if prompts are...
••
AI Jailbreak Tracker
Created by Trill Bill
Community jailbreak examples, technical research, and incident analysis on LLM prompt injection
Digest Calendar
April 2026Sun
Mon
Tue
Wed
Thu
Fri
Sat
Recent Posts
Explore the latest content tracked by AI Jailbreak Tracker
13h ago
Anthropic Bans OpenClaws Creator: Red-Teaming Tool Sparks Safety Debate
Key tensions in AI jailbreak research:
- OpenClaws extracts Claude's system prompts for replication, aiding study of safety guardrails but enabling...
13h ago
Rising Red-Teaming Tools for System Prompt Overrides
Trend in practical setups for detecting prompt injections:
- Direct injection: Operators craft queries like “Ignore previous instructions” to...
1d ago
AI Jailbreak Tracker · Apr 11 Daily Digest
New Agentic Red-Teaming Tools
- 🔥 redamon GitHub Repo: GitHub repository for redamon, an AI-powered agentic red team framework that automates...
1d ago
Indirect Injection Bypasses LLM Supervisor Agents
Critical blind spot in layered LLM defenses: Supervisors monitor direct user input but miss adversarial instructions hidden in user profile fields...
1d ago
Rise of AI Agentic Red-Teaming Tools like redamon and hackingBuddyGPT
AI agents are automating red-teaming, from recon to exploitation:
- redamon: Agentic framework for full offensive security ops
- hackingBuddyGPT:...
2d ago
AI Jailbreak Tracker · Apr 10 Daily Digest
Real-World Prompt Injection Exploits
- 🔥 GrafanaGhost Vulnerability: Researchers at Noma Security discovered GrafanaGhost, a flaw enabling silent...
2d ago
PDF Injection Scanner Nails Professor Traps That ML Misses
- Professor traps explode: History prof hid white-text prompt forcing Marxist analysis + cat refs; caught 33/122 AI papers. Dua Lipa/Finland bait went...
2d ago
Unicode Reversal + Neural Exec Bypassed Apple Intelligence Filters
Key attack breakdown on Apple's on-device LLM safeguards:
- Input/output filters check prompts/responses before/after model processing.
- Unicode...
2d ago
GrafanaGhost: Prompt Injection Enables Silent Data Exfil in Grafana
GrafanaGhost chains prompt injection with validation bypass for stealthy data theft:
- Injection entry: User inputs via URLs/dashboards reach AI.
-...
3d ago
AI Jailbreak Tracker · Apr 9 Daily Digest
Claude Tool Safety Bypasses
- 🔥 Claude Code Deny Rules Fail in Long Workflows: Leaked Claude Code source reveals a flaw where deny rules stop...
3d ago
Claude Dev Tools: Rising Pattern of Safety Bypasses in CLI and Code Agents
Emerging trend in Anthropic's Claude tools reveals vulnerabilities enabling system prompt overrides and deny rule breakdowns:
- CLI flaw:...
3d ago
CIS Warns: Prompt Injection Haunts Gov GenAI Workflows
Gov GenAI boom amplifies risks:
- 82% adoption surge: State/territorial employees using GenAI daily, up from 53%, prioritizing AI in 2026.
- Inherent...
5d ago
AI Jailbreak Tracker · Apr 7 Daily Digest
Claude Code Vulnerability Post-Leak
- 🔥 Adversa AI Discovery: Researchers at Adversa AI found a critical flaw in Claude Code's permission system,...
5d ago
Claude Code Leak Reveals Prompt Injection Vuln, Pentesting Gaps, Prompt Hacks
Post-leak security flaws exposed in Claude Code's permission system.
- Critical vuln: Limits checks to 50 subcommands; longer chains bypassed via...
6d ago
Cursor MCP Vulnerability Enables Infinite Token Bypass
Critical Cursor flaw exposed: Community forum flags MCP integration vuln allowing infinite tokens and full limit bypasses.
- Exploit mechanics: Route...
April 5, 2026
AI Jailbreak Tracker · Apr 5 Daily Digest
Claude Code Leak Exposures
- 🔥 Anthropic's Accidental npm Leak: Anthropic published a 60MB source map file with 512,000 lines of TypeScript...
April 5, 2026
Claude Code Leak Dumps System Prompts and Permission Gates for Jailbreak Scrutiny
- Epic blunder: Anthropic accidentally published 512k lines of Claude Code source via npm source map, exposing every system prompt, tool definition,...
April 5, 2026
Community Swiftly Bypasses Anthropic's OpenClaw Block with Local Agents
- Anthropic blocks Claude Pro/Max with OpenClaw as of 12pm PT today.
- Live alternatives: Local Hermes Agent on DGX Spark, Oh My Codex for multi-agent...
April 5, 2026
Practical Guardrails for Securing Agentic AI Against 2026 Hijacks
Post-2026 breaches demand robust agent defenses. Here's the toolkit from Q161–Q170:
- Sandbox tools & least privilege: Isolate code exec with...