ATR-2026-00144highPrivilege Escalationexperimental

Rationalized Safety Control Bypass

Detects agents rationalizing bypassing safety controls or APIs by claiming efficiency, directness, or speed as justification. Pattern: "To be more efficient, I'll use X directly instead of Y." Crystallized from 31 adversarial samples.

Severity

high

Response Actions

alertblock input

References

OWASP Agentic

ASI03 - Excessive Agency

OWASP LLM

LLM01:2025 - Prompt Injection

View full YAML on GitHub →

More Privilege Escalation Rules

ATR-2026-00040criticalPrivilege Escalation and Admin Function Access ATR-2026-00041mediumAgent Scope Creep Detection ATR-2026-00064highOver-Permissioned MCP Skill ATR-2026-00107highPrivilege Escalation via Delayed Task Execution Bypass ATR-2026-00110criticalRemote Code Execution via eval() and Dynamic Code Injection