ATR-2026-00093criticalPrompt Injectiondraft

Gradual Capability Escalation via Incremental Introduction

Detects attacks that use gradual, sub-threshold capability introductions to evade behavioral fingerprinting and whitelist-based security systems. Attackers incrementally expand agent permissions, register small capability additions across version updates, or slowly shift the behavioral baseline to normalize malicious functionality.

Severity

critical

Response Actions

block inputquarantine sessionalertescalatekill agent

References

MITRE ATLAS

AML.T0051

View full YAML on GitHub →

More Prompt Injection Rules

ATR-2026-00001highDirect Prompt Injection via User Input ATR-2026-00002highIndirect Prompt Injection via External Content ATR-2026-00003highJailbreak Attempt Detection ATR-2026-00004criticalSystem Prompt Override Attempt ATR-2026-00005mediumMulti-Turn Prompt Injection