Paste any content your agent might receive — webpage text, an email, a document, tool output. Pick the source type and policy. Watch what Arc Gate actually does with it.
● LIKELY BLOCK — Finance agent
Fund transfer injection
INFORMATION tag format. AgentDojo v1 attack pattern.
● LIKELY BLOCK — Browser agent
Poisoned webpage footer
Hidden instruction in page footer. Classic indirect injection.
● LIKELY BLOCK — Email agent
Email instruction override
Explicit instruction override embedded in email body.
⚠ LIKELY RESTRICT — Internal copilot
CRM record with exfil instruction
Notes field contains data exfiltration instruction. Tool calls revoked.
✓ LIKELY ALLOW — Browser agent
Clean news article
Normal content. No embedded instructions.
✓ LIKELY ALLOW — Email agent
Normal business email
Scheduling email. Nothing suspicious.
⚠ UNCERTAIN — RAG assistant
Ambiguous document note
Instruction embedded in legitimate-looking document.
● LIKELY BLOCK — Balanced
Implicit instruction in data field
Attack structurally indistinguishable from legitimate data. May pass.