AgentDojo
A dynamic environment by ETH Zurich/Invariant Labs that evaluates the security and utility of tool-using LLM agents against prompt injection attacks, measuring task utility under attack and attacker targeted success rate across realistic banking, Slack, travel, and workspace tasks.
What this benchmark measures
A dynamic environment by ETH Zurich/Invariant Labs that evaluates the security and utility of tool-using LLM agents against prompt injection attacks, measuring task utility under attack and attacker targeted success rate across realistic banking, Slack, travel, and workspace tasks.
Rows on this page are sourced from public benchmark artifacts, leaderboard exports, or source-linked model reports. Each row keeps benchmark version, source model name, and available run details attached to the score.
The metric shown here is utility under attack. It should be interpreted within AgentDojo, not compared as part of a site-wide ranking.