What's the difference between Promptfoo Open Source and Promptfoo Enterprise?
Promptfoo Open Source is a free, open-source version of our platform that focuses specifically on local testing and one-off scans.
Promptfoo Enterprise is our commercial version that offers additional capabilities such as team collaboration, continuous monitoring, a centralized security dashboard, customized plugins, SSO, access control, cloud deployment options, and priority support with SLA guarantees.
How does Promptfoo differ from other LLM security tools?
Promptfoo is the only LLM security tool that includes the following:
- Dynamic test sets that are unique to your application. - ML search & optimization algorithms that explore the state space of your application to find novel vulnerabilities. - 30+ configurable plugins, including advanced attack types like conversational jailbreaks and indirect prompt injections. - A focus on testing the security of applications rather than base models. - Support for both black-box and gray-box applications. - No SDK or agent requirements.
What types of LLM vulnerabilities can Promptfoo detect?
Promptfoo covers a wide range of vulnerabilities. This includes:
How does Promptfoo integrate with existing development workflows?
Promptfoo integrates with common CI/CD pipelines, allowing for continuous vulnerability detection throughout the development lifecycle. It offers:
- Support for popular CI/CD platforms - Configurable scans on code changes, pull requests, or scheduled intervals - Flexibility to run locally or self-hosted
What deployment options are available for Promptfoo?
Promptfoo offers both cloud-based and on-premises solutions. The on-premises option provides complete data isolation and control over your infrastructure.