Catalogue of Tools & Metrics for Trustworthy AI

These tools and metrics are designed to help AI actors develop and use trustworthy AI systems and applications that respect human rights and are fair, transparent, explainable, robust, secure and safe.

Overview Tools Metrics About the catalogue

garak, LLM vulnerability scanner

Website

Github

Tool package

Garak is an open-source LLM vulnerability scanner developed by NVIDIA that systematically probes large language models and dialogue systems for security weaknesses and failure modes. Garak brings a structured, adversarial testing methodology to the evaluation of language models.

The tool combines static, dynamic, and adaptive probes across a comprehensive range of attack vectors and vulnerability categories. These include prompt injection, jailbreaks, hallucination, toxicity generation, data leakage, misinformation, encoding-based attacks, malware generation, cross-site scripting, package hallucination, and glitch token exploitation, among many others. Each probe is paired with detectors that assess whether a model's output exhibits the targeted failure mode, and results are logged in structured JSONL reports that support downstream analysis and comparison across models and runs.

garak supports most if not all major LLM providers and interfaces, including OpenAI, Hugging Face, AWS Bedrock, Replicate, Cohere, Groq, NVIDIA NIM, gguf models, and any REST-accessible endpoint. This broad compatibility makes it applicable across research environments, enterprise deployments, and regulatory evaluation contexts without platform dependency.

About the tool

You can click on the links to see the associated tools

Developing organisation(s):

NVIDIA

Tool type(s):

Toolkit/software
Technical validation

Objective(s):

Robustness
Safety
Digital Security

Impacted stakeholders:

Employees
Management

Purpose(s):

Event/anomaly detection
Risk management

Lifecycle stage(s):

Operate & monitor
Deploy
Verify & validate

Type of approach:

Technical

Usage rights:

Open source/Permissive

License:

Apache 2.0

Target groups:

Private sector
Technical community

Target users:

Developer
IT specialist
Researcher

Validity:

Always up to date

Benefits:

Reduction in risk of failure
Responsible implementation

Geographical scope:

International

Required skills:

Domain expertise
Programming skills

Risk management stage(s):

Assess risks & impacts

Technology platforms:

Platform neutral

Programming languages:

Python
HTML

Tags:

evaluation
ai vulnerabilities
llm security
llm
prompt security
red teaming

Modify this tool

Use Cases

There is no use cases for this tool yet.

Would you like to submit a use case for this tool?

If you have used this tool, we would love to know more about your experience.

Add use case

Partnership on AI

Disclaimer: The tools and metrics featured herein are solely those of the originating authors and are not vetted or endorsed by the OECD or its member countries. The Organisation cannot be held responsible for possible issues resulting from the posting of links to third parties' tools and metrics on this catalogue. More on the methodology can be found at https://oecd.ai/catalogue/faq.