Skip to content

Red-team strategy

CSV Formula Injection

csv-formula-injection

Frames the payload as active spreadsheet formula cells (=, +, -, @ triggers; DDE and HYPERLINK forms)

YAML config

evalguard.config.yaml
redteam:
  strategies:
    - csv-formula-injection

CLI

bash
# "csv-formula-injection" is layered onto attacks during red-team scans.
# List every available encoding/obfuscation strategy:
evalguard list strategies
Combine with attack plugins to generate adversarial payloads. The strategy wraps each base payload before it's sent to your target, testing whether the model decodes / unwraps the transform and follows the embedded instruction.