Skill UI

PyRIT (Python Risk Identification Tool) is an open-source automation framework designed for advanced, multi-turn adversarial red-teaming of conversational LLMs. It simulates real-world attack scenarios by orchestrating an attacker model and a scorer model in a feedback loop. Features include Crescendo (gradual escalation) and Tree-of-Attacks with Pruning (TAP) techniques to detect complex vulnerabilities like prompt injection and jailbreaks in stateful dialogues.

This skill provides a comprehensive defense-in-depth framework for securing autonomous AI agents. It implements least-privilege tool allowlisting, identity binding, and human-in-the-loop controls to mitigate risks like prompt injection and tool poisoning. Use this when building agents that interact with sensitive systems (e.g., payments, file writes) to ensure governance, auditability, and compliance.

This skill structures a highly controlled, bounded development life cycle for AI agents. It mandates a structured three-phase workflow: Planning (Spec), Implementation (Build), and Verification (Review). It is essential for building complex features from scratch, especially when dealing with ambiguous requirements, high risk, or needing explicit human approval gates to ensure the resulting code meets all defined specifications.