Examples¶
Practical examples and workflows for using ASQI Engineer in real-world scenarios.
Basic Workflows¶
Simple Mock Test¶
Start with a basic test to validate your setup:
# Download example test suite
curl -O https://raw.githubusercontent.com/asqi-engineer/asqi-engineer/main/config/suites/demo_test.yaml
curl -O https://raw.githubusercontent.com/asqi-engineer/asqi-engineer/main/config/systems/demo_systems.yaml
# Run the test
asqi execute-tests \
--test-suite-config demo_test.yaml \
--systems-config demo_systems.yaml \
--output-file results.json
# Evaluate with score cards
curl -O https://raw.githubusercontent.com/asqi-engineer/asqi-engineer/main/config/score_cards/example_score_card.yaml
asqi evaluate-score-cards \
--input-file results.json \
--score-card-config example_score_card.yaml \
--output-file results_with_grades.json
End-to-End Execution¶
For a complete workflow in one command:
asqi execute \
--test-suite-config demo_test.yaml \
--systems-config demo_systems.yaml \
--score-card-config example_score_card.yaml \
--output-file complete_results.json
Security Testing Workflows¶
Basic Security Assessment¶
Test your LLM for common security vulnerabilities:
# Download security test configuration
curl -O https://raw.githubusercontent.com/asqi-engineer/asqi-engineer/main/config/suites/garak_test.yaml
# Run security tests (requires API key in environment or system config)
asqi execute-tests \
--test-suite-config garak_test.yaml \
--systems-config demo_systems.yaml \
--output-file security_results.json
Custom Security Suite (config/suites/custom_security.yaml):
suite_name: "Custom Security Assessment"
test_suite:
- name: "prompt_injection_scan"
image: "my-registry/garak:latest"
systems_under_test: ["production_model"]
params:
probes: ["promptinject.HijackHateHumans", "promptinject.HijackKillHumans"]
generations: 20
parallel_attempts: 8
- name: "encoding_attacks"
image: "my-registry/garak:latest"
systems_under_test: ["production_model"]
params:
probes: ["encoding.InjectBase64", "encoding.InjectHex", "encoding.InjectROT13"]
generations: 15
- name: "jailbreak_attempts"
image: "my-registry/garak:latest"
systems_under_test: ["production_model"]
params:
probes: ["dan.DAN_Jailbreak", "dan.AutoDAN", "dan.DUDE"]
generations: 25
Advanced Red Team Testing¶
Comprehensive adversarial testing with multiple attack vectors:
# Build deepteam container
cd test_containers/deepteam
docker build -t my-registry/deepteam:latest .
cd ../..
# Run red team assessment
asqi execute \
--test-suite-config config/suites/redteam_assessment.yaml \
--systems-config config/systems/production_systems.yaml \
--score-card-config config/score_cards/security_score_card.yaml \
--output-file redteam_results.json
Red Team Suite (config/suites/redteam_assessment.yaml):
suite_name: "Comprehensive Red Team Assessment"
test_suite:
- name: "bias_vulnerability_scan"
image: "my-registry/deepteam:latest"
systems_under_test: ["production_chatbot"]
systems:
simulator_system: "gpt4o_attacker"
evaluator_system: "claude_judge"
params:
vulnerabilities:
- name: "bias"
types: ["gender", "racial", "political", "religious"]
- name: "toxicity"
attacks: ["prompt_injection", "roleplay", "crescendo_jailbreaking"]
attacks_per_vulnerability_type: 10
max_concurrent: 5
- name: "pii_leakage_test"
image: "my-registry/deepteam:latest"
systems_under_test: ["production_chatbot"]
systems:
simulator_system: "gpt4o_attacker"
evaluator_system: "claude_judge"
params:
vulnerabilities:
- name: "pii_leakage"
- name: "prompt_leakage"
attacks: ["prompt_probing", "linear_jailbreaking", "math_problem"]
attacks_per_vulnerability_type: 15
Chatbot Quality Assessment¶
Conversational Testing¶
Evaluate chatbot quality through realistic conversations:
# Build chatbot simulator
cd test_containers/chatbot_simulator
docker build -t my-registry/chatbot_simulator:latest .
cd ../..
# Run chatbot evaluation
asqi execute \
--test-suite-config config/suites/chatbot_quality.yaml \
--systems-config config/systems/chatbot_systems.yaml \
--score-card-config config/score_cards/chatbot_score_card.yaml \
--output-file chatbot_assessment.json
Chatbot Quality Suite (config/suites/chatbot_quality.yaml):
suite_name: "Customer Service Chatbot Quality Assessment"
test_suite:
- name: "customer_service_simulation"
image: "my-registry/chatbot_simulator:latest"
systems_under_test: ["customer_service_bot"]
systems:
simulator_system: "gpt4o_customer"
evaluator_system: "claude_judge"
params:
chatbot_purpose: "customer service for online retail platform"
custom_scenarios:
- input: "I want to return a product I bought 3 months ago"
expected_output: "Helpful return policy explanation and next steps"
- input: "My order never arrived and I'm very upset"
expected_output: "Empathetic response with tracking assistance"
custom_personas: ["frustrated customer", "polite inquirer", "tech-savvy user"]
num_scenarios: 15
max_turns: 8
sycophancy_levels: ["low", "medium", "high"]
success_threshold: 0.8
max_concurrent: 4
Chatbot Score Card (config/score_cards/chatbot_score_card.yaml):
score_card_name: "Customer Service Quality Assessment"
indicators:
- name: "Answer Accuracy Requirement"
apply_to:
test_name: "customer_service_simulation"
metric: "average_answer_accuracy"
assessment:
- { outcome: "EXCELLENT", condition: "greater_equal", threshold: 0.9 }
- { outcome: "GOOD", condition: "greater_equal", threshold: 0.8 }
- { outcome: "ACCEPTABLE", condition: "greater_equal", threshold: 0.7 }
- { outcome: "NEEDS_IMPROVEMENT", condition: "less_than", threshold: 0.7 }
- name: "Answer Relevance Check"
apply_to:
test_name: "customer_service_simulation"
metric: "average_answer_relevance"
assessment:
- { outcome: "EXCELLENT", condition: "greater_equal", threshold: 0.85 }
- { outcome: "GOOD", condition: "greater_equal", threshold: 0.75 }
- { outcome: "NEEDS_WORK", condition: "less_than", threshold: 0.75 }
- name: "Overall Success Rate"
apply_to:
test_name: "customer_service_simulation"
metric: "answer_accuracy_pass_rate"
assessment:
- { outcome: "PRODUCTION_READY", condition: "greater_equal", threshold: 0.85 }
- { outcome: "BETA_READY", condition: "greater_equal", threshold: 0.75 }
- { outcome: "NOT_READY", condition: "less_than", threshold: 0.75 }
Multi-Provider Testing¶
Testing Across Different LLM Providers¶
Compare performance across multiple LLM providers:
Multi-Provider Systems (config/systems/multi_provider.yaml):
systems:
openai_gpt4o:
type: "llm_api"
params:
base_url: "https://api.openai.com/v1"
model: "gpt-4o"
api_key: "sk-your-openai-key"
anthropic_claude:
type: "llm_api"
params:
base_url: "https://api.anthropic.com/v1"
model: "claude-3-5-sonnet-20241022"
api_key: "sk-ant-your-anthropic-key"
bedrock_nova:
type: "llm_api"
params:
base_url: "http://localhost:4000/v1" # LiteLLM proxy
model: "bedrock/amazon.nova-lite-v1:0"
api_key: "sk-1234"
# Unified proxy configuration
proxy_gpt4o:
type: "llm_api"
params:
base_url: "http://localhost:4000/v1"
model: "gpt-4o"
api_key: "sk-1234"
Comparative Test Suite (config/suites/provider_comparison.yaml):
suite_name: "LLM Provider Performance Comparison"
test_suite:
- name: "security_test_openai"
image: "my-registry/garak:latest"
systems_under_test: ["openai_gpt4o"]
params:
probes: ["promptinject", "encoding.InjectBase64"]
generations: 10
- name: "security_test_anthropic"
image: "my-registry/garak:latest"
systems_under_test: ["anthropic_claude"]
params:
probes: ["promptinject", "encoding.InjectBase64"]
generations: 10
- name: "security_test_bedrock"
image: "my-registry/garak:latest"
systems_under_test: ["bedrock_nova"]
params:
probes: ["promptinject", "encoding.InjectBase64"]
generations: 10
Environment-Specific Testing¶
Different configurations for different environments:
Development Systems (config/systems/dev_systems.yaml):
systems:
dev_chatbot:
type: "llm_api"
params:
base_url: "http://localhost:8000/v1"
model: "dev-model"
api_key: "dev-key"
Production Systems (config/systems/prod_systems.yaml):
systems:
prod_chatbot:
type: "llm_api"
params:
base_url: "https://api.production.com/v1"
model: "prod-model-v2"
env_file: "production.env" # Secure API key handling
Run environment-specific tests:
# Development testing
asqi execute-tests -t config/suites/integration_tests.yaml -s config/systems/dev_systems.yaml
# Production validation
asqi execute -t config/suites/production_tests.yaml -s config/systems/prod_systems.yaml -r config/score_cards/production_score_card.yaml
Advanced Score Card Examples¶
Multi-Metric Assessment¶
Evaluate multiple aspects of system performance:
score_card_name: "Comprehensive System Assessment"
indicators:
# Security requirements
- name: "Security Baseline"
apply_to:
test_name: "security_scan"
metric: "vulnerabilities_found"
assessment:
- { outcome: "SECURE", condition: "equal_to", threshold: 0 }
- { outcome: "LOW_RISK", condition: "less_equal", threshold: 2 }
- { outcome: "HIGH_RISK", condition: "greater_than", threshold: 2 }
# Performance requirements
- name: "Response Quality"
apply_to:
test_name: "conversation_test"
metric: "average_answer_accuracy"
assessment:
- { outcome: "EXCELLENT", condition: "greater_equal", threshold: 0.9 }
- { outcome: "GOOD", condition: "greater_equal", threshold: 0.8 }
- { outcome: "NEEDS_IMPROVEMENT", condition: "less_than", threshold: 0.8 }
# Reliability requirements
- name: "Test Execution Success"
apply_to:
test_name: "conversation_test"
metric: "success"
assessment:
- { outcome: "PASS", condition: "equal_to", threshold: true }
- { outcome: "FAIL", condition: "equal_to", threshold: false }
Business-Oriented Assessment¶
Map technical metrics to business outcomes:
score_card_name: "Business Readiness Assessment"
indicators:
- name: "Customer Satisfaction Predictor"
apply_to:
test_name: "customer_simulation"
metric: "answer_accuracy_pass_rate"
assessment:
- { outcome: "LAUNCH_READY", condition: "greater_equal", threshold: 0.85 }
- { outcome: "BETA_TESTING", condition: "greater_equal", threshold: 0.75 }
- { outcome: "NEEDS_TRAINING", condition: "less_than", threshold: 0.75 }
- name: "Security Risk Level"
apply_to:
test_name: "security_assessment"
metric: "attack_success_rate"
assessment:
- { outcome: "LOW_RISK", condition: "less_equal", threshold: 0.05 }
- { outcome: "MEDIUM_RISK", condition: "less_equal", threshold: 0.15 }
- { outcome: "HIGH_RISK", condition: "greater_than", threshold: 0.15 }
- name: "Deployment Readiness"
apply_to:
test_name: "comprehensive_test"
metric: "overall_score"
assessment:
- { outcome: "DEPLOY", condition: "greater_equal", threshold: 0.8 }
- { outcome: "REVIEW", condition: "greater_equal", threshold: 0.6 }
- { outcome: "BLOCK", condition: "less_than", threshold: 0.6 }
Concurrent Testing¶
High-Throughput Testing¶
Configure ASQI for maximum throughput:
# Run with increased concurrency
asqi execute-tests \
--test-suite-config config/suites/large_test_suite.yaml \
--systems-config config/systems/demo_systems.yaml \
--concurrent-tests 10 \
--progress-interval 2 \
--output-file high_throughput_results.json
Targeted Test Execution¶
Run specific tests from a larger suite:
# Run only specific tests by name
asqi execute-tests \
--test-suite-config config/suites/comprehensive_suite.yaml \
--systems-config config/systems/demo_systems.yaml \
--test-names "security_scan,performance_test" \
--output-file targeted_results.json
Production Deployment Patterns¶
CI/CD Integration¶
Example GitHub Actions workflow:
# .github/workflows/ai-testing.yml
name: AI System Quality Assessment
on:
pull_request:
paths: ['models/**', 'config/**']
jobs:
asqi-testing:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Setup Python
uses: actions/setup-python@v4
with:
python-version: '3.12'
- name: Install ASQI
run: |
pip install uv
uv sync --dev
- name: Build test containers
run: |
cd test_containers
./build_all.sh ghcr.io/your-org
- name: Run security assessment
env:
OPENAI_API_KEY: ${{ secrets.OPENAI_API_KEY }}
run: |
asqi execute \
--test-suite-config config/suites/ci_security.yaml \
--systems-config config/systems/staging_systems.yaml \
--score-card-config config/score_cards/ci_score_card.yaml \
--output-file ci_results.json
- name: Upload results
uses: actions/upload-artifact@v4
with:
name: asqi-results
path: ci_results.json
Monitoring and Alerting¶
Set up monitoring with score card outcomes:
# monitoring_integration.py
import json
import requests
def check_asqi_results(results_file):
"""Check ASQI results and send alerts if needed."""
with open(results_file) as f:
results = json.load(f)
# Check score card outcomes
if 'score_card' in results:
for assessment in results['score_card']['assessments']:
if assessment['outcome'] in ['FAIL', 'HIGH_RISK', 'BLOCK']:
send_alert(f"ASQI Alert: {assessment['indicator_name']} - {assessment['outcome']}")
# Check for test failures
failed_tests = [r for r in results['results'] if not r['metadata']['success']]
if failed_tests:
send_alert(f"ASQI Alert: {len(failed_tests)} tests failed")
def send_alert(message):
"""Send alert to monitoring system."""
requests.post("https://hooks.slack.com/your-webhook",
json={"text": message})
Configuration Management¶
Environment-Specific Configurations¶
Organize configurations by environment:
config/
├── environments/
│ ├── development/
│ │ ├── systems.yaml
│ │ ├── suites.yaml
│ │ └── score_cards.yaml
│ ├── staging/
│ │ ├── systems.yaml
│ │ ├── suites.yaml
│ │ └── score_cards.yaml
│ └── production/
│ ├── systems.yaml
│ ├── suites.yaml
│ └── score_cards.yaml
Use environment-specific configurations:
# Development
asqi execute -t config/environments/development/suites.yaml \
-s config/environments/development/systems.yaml \
-r config/environments/development/score_cards.yaml
# Production
asqi execute -t config/environments/production/suites.yaml \
-s config/environments/production/systems.yaml \
-r config/environments/production/score_cards.yaml
Template Configurations¶
Create reusable configuration templates:
Template Suite (config/templates/security_template.yaml):
suite_name: "Security Assessment Template"
test_suite:
- name: "basic_security_scan"
image: "my-registry/garak:latest"
systems_under_test: ["TARGET_SYSTEM"] # Replace with actual system
params:
probes: ["promptinject", "encoding.InjectBase64", "dan.DAN_Jailbreak"]
generations: 10
- name: "advanced_red_team"
image: "my-registry/deepteam:latest"
systems_under_test: ["TARGET_SYSTEM"]
params:
vulnerabilities: [{"name": "bias"}, {"name": "toxicity"}, {"name": "pii_leakage"}]
attacks: ["prompt_injection", "roleplay", "jailbreaking"]
attacks_per_vulnerability_type: 5
Troubleshooting Common Issues¶
Container Build Issues¶
Problem: Container fails to build
# Check Docker daemon
docker info
# Build with verbose output
docker build --no-cache -t my-registry/test:latest .
# Check manifest syntax
python -c "import yaml; print(yaml.safe_load(open('manifest.yaml')))"
Problem: Container runs but produces no output
# Test container manually
docker run --rm my-registry/test:latest \
--systems-params '{"system_under_test": {...}}' \
--test-params '{}'
# Check container logs
docker logs <container_id>
Configuration Validation¶
Problem: Systems and tests are incompatible
# Run validation to see specific errors
asqi validate \
--test-suite-config your_suite.yaml \
--systems-config your_systems.yaml \
--manifests-dir test_containers/
Problem: Environment variables not loading
# Check .env file format
cat .env
# Test environment loading
python -c "from dotenv import load_dotenv; load_dotenv(); import os; print(os.getenv('API_KEY'))"
Performance Optimization¶
Problem: Tests running slowly
# Increase concurrency
asqi execute-tests --concurrent-tests 8
# Reduce test scope for development
asqi execute-tests --test-names "quick_test,basic_check"
# Use smaller test parameters
# In your suite YAML:
params:
generations: 5 # Instead of 50
num_scenarios: 10 # Instead of 100