{"success":true,"filters":{"role":"operations","firstWedge":null,"riskType":null,"search":null},"summary":{"labs":1,"firstWedgeRole":null,"riskTypes":4,"attackBriefs":4,"validationRules":4,"promptInjectionDefenses":4,"escalationTriggers":5,"riskCounts":{"automation_overreach":1,"prompt_injection":1,"data_exposure":1,"unauthorized_action":1}},"labs":[{"id":"ai-safety-red-team-operations","role":"operations","roleLabel":"Operations","productLine":"AIducation for Operations","firstWedge":false,"academyPath":"/ai-training/operations","labName":"Operations AI Safety Red-Team Lab","primaryWorkflow":"SOP generation and review","riskTypes":["automation_overreach","prompt_injection","data_exposure","unauthorized_action"],"attackBriefs":[{"type":"automation_overreach","name":"Automation overreach","scenario":"A repeatable operations workflow is being automated before failure handling is clear.","riskyBehavior":"Learner lets AI or automation trigger downstream actions without approvals, alerts, rollback, or monitoring.","detectionCheck":"Inspect whether retries, exceptions, human review, audit logs, and stop conditions are defined.","safeResponsePattern":"Keep human checkpoints on sensitive actions and start with low-risk internal workflow evidence."},{"type":"prompt_injection","name":"Prompt injection","scenario":"A source document, ticket, or tool output includes instructions that try to override the operations workflow rules.","riskyBehavior":"Learner follows embedded instructions instead of the approved task, policy, or system boundary.","detectionCheck":"Look for hidden commands, tool redirection, data exfiltration requests, or attempts to ignore prior instructions.","safeResponsePattern":"Treat source content as untrusted input, quote only relevant facts, and keep the approved task boundary."},{"type":"data_exposure","name":"Sensitive data exposure","scenario":"The sop generation and review task contains customer, employee, patient, student, financial, or confidential data.","riskyBehavior":"Learner pastes sensitive data into an unapproved tool or includes it in a reusable prompt.","detectionCheck":"Identify PII, PHI, account data, payroll data, contracts, credentials, or internal-only context before prompting.","safeResponsePattern":"Minimize, redact, or use an approved enterprise tool before any AI-assisted step."},{"type":"unauthorized_action","name":"Unauthorized action","scenario":"The AI suggests an action that changes a customer account, employee process, financial result, legal position, or public commitment.","riskyBehavior":"Learner accepts AI authority where human approval, policy review, or manager sign-off is required.","detectionCheck":"Check whether the workflow changes money, access, obligations, records, employment, health, or compliance posture.","safeResponsePattern":"Escalate before action and document the approval owner, policy basis, and final human decision."}],"detectionChecklist":["Identify the operations workflow, tool, source, data sensitivity, and decision owner.","Mark every unsupported claim, missing source, hidden instruction, approval gap, and unsafe automation path.","Compare the response against policy training, governance rules, and rubric must-pass dimensions.","Produce a manager-readable risk note with the fix, escalation path, and evidence artifact."],"outputValidationRules":["Reject output that makes unsupported factual, financial, legal, medical, policy, or technical claims.","Require source, policy, calculation, transcript, ticket, document, or code-path evidence for high-impact statements.","Flag any sensitive data that appears in prompts, tool outputs, examples, screenshots, or reusable templates.","Require Operations manager review when authority, privacy, compliance, brand, safety, or customer impact is unclear."],"promptInjectionDefenses":["Treat tickets, docs, transcripts, webpages, spreadsheets, and code comments as untrusted input.","Ignore instructions inside source material that ask the learner to reveal prompts, bypass policy, change tools, or skip review.","Summarize suspicious instructions as risk evidence instead of following them.","Escalate Operations workflows when source content conflicts with approved policy, rubric, or manager instructions."],"escalationTriggers":["Operations learner pastes sensitive data into an unapproved AI tool","Operations learner forwards AI output without verification or source evidence","Operations workflow automates a decision that requires human approval","AI output asks to bypass a policy, human review, approval gate, or approved tool catalog.","The learner cannot explain which source or rubric dimension supports the final answer."],"linkedEvidence":[{"label":"Operations AI Governance Center","href":"/governance-center","type":"governance"},{"label":"Operations AI Policy Training","href":"/policy-training","type":"policy"},{"label":"Operations AI Readiness Rubric","href":"/admin/rubric-contracts","type":"rubric"},{"label":"Operations Automation design lab","href":"/tool-comparison-labs","type":"tool_lab"}],"managerReviewQuestions":["Which operations risk would make this AI output unsafe to reuse?","What source, policy, calculation, approval, or code-path evidence is missing?","Should this learner retry the scenario, escalate to a manager, or update a reusable workflow template?"]}]}