AI Risk Visibility
Testing via Web
To get started testing your AI model or application via Mindgard web UI, first select Test Configurations at the top of the Model Tests page.
Click to create a new test configuration.
Next you’ll need to choose a “Target Name”—a name for your AI system under test. This name will identify these security test results in the future, as well as grouping subsequent tests of the same system together to track the risk posture over time.
There are preset templates for the most common API structures to choose from including OpenAI, HuggingFace, Azure, and Anthropic. If you’re testing an AI model hosted with one of these vendors then choose the relevant option. If not, choose “Custom” to fully control how to interface Mindgard with a custom API.
Below is an example configuration for a custom API.
There are two template placeholders you must include in your Request Template.
— Mindgard will replace this placeholder with a testing input as part of an attack technique.
— Mindgard will replace this with the system prompt you specify below. This will allow you to test how the system behaves with different system instructions.
The screenshot above would require a Request Template of:
The Dataset option allows you to choose to test with datasets and goals relevant to your system domain. For example, the Finance dataset covers scenarios like abuse to enable fraud or money laundering.
The Duration option controls a tradeoff between speed of the test, and the confidence of any scores given. All dynamic testing of inherently non-deterministic AI systems has inherent limitations in confidence of results. A mitigation for these phenomena is running tests for longer with more samples to increase confidence. The tradeoff in doing so is that tests will subsequently take longer to complete, and increase your AI model hosting costs.
The default of Fast runs a small sample set and gives rapid visibility of risks. We recommend that you use this option while you are exploring initial risks. Fast may also be the best option for CI/CD integrations if you have a very short time budget for tests in your build pipeline. The Thorough option – which runs the tests for longer – is a good balance for many customers. Extensive runs security tests to high confidence, and is the setting Mindgard uses for collection of threat intelligence on foundational and open source models. The time duration and cost of running at this setting may be prohibitive.

