This is a SaaS and on-prem update
Back end version: v8.81.2-gpu
Front end version: v3.43.0
CalypsoAI Inference Red-Team
Attack scheduling
Sometimes now is not the time. We’ve added the ability to schedule an attack for a future time. So if you know the attack will take a while to execute, or if you’re concerned about latency or user impact in production systems, this feature allows you to specify exactly when you want the attack to start running. You can also cancel a scheduled attack, or change the schedule.
Agentic Warfare campaigns
Custom campaign are now Agentic Warfare campaigns. This change helps underline the difference between standard, signature-based attacks and dynamic, agentic attacks built from a user-supplied custom intent.
CalypsoAI Inference Defend
Individual scanner controls for packages
We’ve added more customization to the CalypsoAI scanner packages. Previously, users could see the scanners inside the package but were not able to apply individual controls to them. That’s all changed in this release. Now, when you disable the package, you open up controls for each of the scanners in the package, allowing you to:
Activate only the scanners you want to use.
Apply block or audit actions at the scanner level.
Apply enforcement to individual scanners.
NOTE: This enhancement only affects CalypsoAI scanners, not custom scanners.
New financial and medical advice scanners
We’ve added two new GenAI scanners that detect and block (or flag) user queries that seek direct medical or financial advice. This prevents AI systems from providing responses that fall outside their intended use. By doing so, the scanner upholds regulatory standards, protects user safety, avoids legal issues, and mitigates the risk associated with unauthorized medical recommendations or inappropriate financial advice.
The medical scanner detects explicit questions or demands for instructions, recommendations, or prescriptions related to an individual’s health, treatment, medication, or disease management, without consulting a licensed healthcare professional.
The financial scanner detects explicit questions or demands for personal financial recommendations, investment strategies, or money management instructions that could significantly impact a user's financial well-being.
Unlimited regex and keyword scanners
We’ve removed the limit on enabling custom regex and keyword scanners. Now you can create and enable as many regex and keyword scanners as you need. However, there’s still a limit on the number of custom GenAI scanners that can be enabled at once.
CalypsoAI Platform
Navigation updates
Our navigation bar was getting a little crowded, especially for laptop users, so we’ve moved some elements into another location. In this release, you’ll find API docs, Support, and Log out under your user avatar in the top right. This leaves more room in the left navigation for all the new functionality we’ll be rolling out this year.
Bug fixes
We’ve improved handling of cell and table scrolling on the Red-Team View Raw Data table.
We’ve increased spacing on the Scanners page between the scanner name and the checkbox.
We’ve added a UTC date in the Reports page.
We removed some unnecessary whitespace on the Custom Roles page and corrected unexpected behavior when more than 10 roles were created.
We’ve disabled the Chat input box on Chat page when no provider exists on a project.
Previously if a CASI score was not available, it was shown as “undefined.” Now it will show as “N/A.”
We’ve improved the behavior of scanner enable/disable actions on projects.
Hide options dropdown menu for CalypsoAI All Attacks campaign.
Fixed API examples in API docs site.
In Application connection creation, we fixed the display of error messages on save.
Fixed issue with Save before Leave modal.
Fixed handling of custom logos and favicons.
For the regex scanner, we’ve include a missing closing quote and improved highlighting of the matched pattern.
For Red-Team reports we’ve fixed the suggested actions sizing and improved the actions being suggested.
Fixed a formatting issue in the Users table that caused long or multiple custom role names to flow outside the table row.
The All Attacks campaign can’t be deleted, so we’ve removed the delete button for this campaign.
Known issues
If a user removes a custom favicon and reverts to the default CalypsoAI logo and favicon, they need to refresh the page in order to see the change.