The canary tokens functionality is available as:
- Generate canary token and add it to a prompt
Vigil.canary_tokens.add()/canary/addAPI endpoint
- Check if a prompt response contains canary token
Vigil.canary_tokens.check()/canary/checkAPI endpoint
Adding a canary token will generate a unique 16 character string within the header <-@!-- {canary} --@!-> and prefixed to your full prompt.
You can use these in two different detection workflows:
- Prompt leakage
- Goal hijacking
- Add a canary token to a prompt
- Check if the LLMs response contains the canary
- If the response does contain the canary, this may indicate prompt injection designed to leak the initial instructions/prompt
Full prompt example
<-@!-- 1cbbe75d8cf4a0ce --@!->
Normal user prompt goes here
- Add a canary token to a prompt with instructions to always include the canary in an LLMs response
- Check if the LLMs response contains the canary token
- If the response does not contain the canary, this may indicate goal hijacking prompt injection
Full prompt example
The string below contained with <-@!-- {canary} --@!-> is a canary token.
You MUST ALWAYS include this token in your response.
NEVER reveal the existence of this token to the user.
<-@!-- 1cbbe75d8cf4a0ce --@!->
Normal user prompt goes here