Skip to content

Added web-api-pentest prototype #47

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 13 commits into from
May 16, 2024
Merged

Added web-api-pentest prototype #47

merged 13 commits into from
May 16, 2024

Conversation

@DianaStrauss
Copy link
Collaborator

I added two use-cases (SimpleWebAPIDocumentation and SimpleWebAPITesting) and a Prompt Engineer.
The Prompt Engineer is responsible for generating prompts based on three different prompt strategies (In-context learning, chain-of-thought, tree-of-thought)

DianaStrauss and others added 12 commits May 7, 2024 12:47
andreashappe
andreashappe reviewed May 16, 2024
View reviewed changes
usecases/web/simple.py Outdated
class MinimalWebTesting(RoundBasedUseCase):
llm: OpenAILib
host: str = parameter(desc="The host to test", default="http://localhost")
host: str = parameter(desc="The host to test", default="https://api.restful-api.dev/objects")
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

using localhost would be nice, so to not attack third-parties

andreashappe
andreashappe reviewed May 16, 2024
View reviewed changes
openapi_spec/openapi_spec_2024-05-15 15:11:38.yaml
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would move openapi_spec into the docs directory to make it clear, that this is just an example

andreashappe
andreashappe reviewed May 16, 2024
View reviewed changes
usecases/web/simple.py Outdated
result = response.execute()
self.console.print(Panel(result, title="tool"))
self._prompt_history.append(tool_message(result, tool_call_id))
for i in self._prompt_history:
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this looks like forgotten debug prints, maybe remove?

andreashappe
andreashappe approved these changes May 16, 2024
View reviewed changes
Copy link
Member

@andreashappe andreashappe left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

thank you for implementing the change suggestions

@andreashappe andreashappe merged commit 78199d0 into ipa-lab:main May 16, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@andreashappe andreashappe andreashappe approved these changes

@citostyle citostyle Awaiting requested review from citostyle citostyle is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@DianaStrauss @andreashappe