{"record_type":"pith_number_record","schema_url":"https://pith.science/schemas/pith-number/v1.json","pith_number":"pith:2025:IQBN54D56TYHOQPC4GAMNJ7QIJ","short_pith_number":"pith:IQBN54D5","schema_version":"1.0","canonical_sha256":"4402def07df4f07741e2e180c6a7f042427fe9c6a22fdf4b9c3e8376b7dcf998","source":{"kind":"arxiv","id":"2507.08862","version":1},"attestation_state":"computed","paper":{"title":"RAG Safety: Exploring Knowledge Poisoning Attacks to Retrieval-Augmented Generation","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":["cs.CL"],"primary_cat":"cs.CR","authors_text":"Haiping Zhu, Jiaoyan Chen, Jun Liu, Nan Hu, Qika Lin, Tianzhe Zhao, Yanchi Ru","submitted_at":"2025-07-09T13:06:58Z","abstract_excerpt":"Retrieval-Augmented Generation (RAG) enhances large language models (LLMs) by retrieving external data to mitigate hallucinations and outdated knowledge issues. Benefiting from the strong ability in facilitating diverse data sources and supporting faithful reasoning, knowledge graphs (KGs) have been increasingly adopted in RAG systems, giving rise to KG-based RAG (KG-RAG) methods. Though RAG systems are widely applied in various applications, recent studies have also revealed its vulnerabilities to data poisoning attacks, where malicious information injected into external knowledge sources can"},"verification_status":{"content_addressed":true,"pith_receipt":true,"author_attested":false,"weak_author_claims":0,"strong_author_claims":0,"externally_anchored":false,"storage_verified":false,"citation_signatures":0,"replication_records":0,"graph_snapshot":true,"references_resolved":false,"formal_links_present":false},"canonical_record":{"source":{"id":"2507.08862","kind":"arxiv","version":1},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2025-07-09T13:06:58Z","cross_cats_sorted":["cs.CL"],"title_canon_sha256":"068b36b1cdb76b5c44e093839be0f223c4f42fadc72dc737dc929e7c5e3b0f1b","abstract_canon_sha256":"c7e6eb1f32f183be0c5a216f044b5f222350d738ad28238115d68b8ce63863d7"},"schema_version":"1.0"},"receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-07-05T11:35:59.478385Z","signature_b64":"9jExMtuv5AgHc0HQHLJJZeXGe/tU7+RemDn1fDPbsWDL7tQjcpmCZLHS0SlyXG6BlJPfgMelGJlIa8nq1I5NDQ==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"4402def07df4f07741e2e180c6a7f042427fe9c6a22fdf4b9c3e8376b7dcf998","last_reissued_at":"2026-07-05T11:35:59.477966Z","signature_status":"signed_v1","first_computed_at":"2026-07-05T11:35:59.477966Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"graph_snapshot":{"paper":{"title":"RAG Safety: Exploring Knowledge Poisoning Attacks to Retrieval-Augmented Generation","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":["cs.CL"],"primary_cat":"cs.CR","authors_text":"Haiping Zhu, Jiaoyan Chen, Jun Liu, Nan Hu, Qika Lin, Tianzhe Zhao, Yanchi Ru","submitted_at":"2025-07-09T13:06:58Z","abstract_excerpt":"Retrieval-Augmented Generation (RAG) enhances large language models (LLMs) by retrieving external data to mitigate hallucinations and outdated knowledge issues. Benefiting from the strong ability in facilitating diverse data sources and supporting faithful reasoning, knowledge graphs (KGs) have been increasingly adopted in RAG systems, giving rise to KG-based RAG (KG-RAG) methods. Though RAG systems are widely applied in various applications, recent studies have also revealed its vulnerabilities to data poisoning attacks, where malicious information injected into external knowledge sources can"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"2507.08862","kind":"arxiv","version":1},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"integrity":{"clean":true,"summary":{"advisory":0,"critical":0,"by_detector":{},"informational":0},"endpoint":"/pith/2507.08862/integrity.json","findings":[],"available":true,"detectors_run":[],"snapshot_sha256":"c28c3603d3b5d939e8dc4c7e95fa8dfce3d595e45f758748cecf8e644a296938"},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"aliases":[{"alias_kind":"arxiv","alias_value":"2507.08862","created_at":"2026-07-05T11:35:59.478024+00:00"},{"alias_kind":"arxiv_version","alias_value":"2507.08862v1","created_at":"2026-07-05T11:35:59.478024+00:00"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.2507.08862","created_at":"2026-07-05T11:35:59.478024+00:00"},{"alias_kind":"pith_short_12","alias_value":"IQBN54D56TYH","created_at":"2026-07-05T11:35:59.478024+00:00"},{"alias_kind":"pith_short_16","alias_value":"IQBN54D56TYHOQPC","created_at":"2026-07-05T11:35:59.478024+00:00"},{"alias_kind":"pith_short_8","alias_value":"IQBN54D5","created_at":"2026-07-05T11:35:59.478024+00:00"}],"events":[],"event_summary":{},"paper_claims":[],"inbound_citations":{"count":1,"internal_anchor_count":0,"sample":[{"citing_arxiv_id":"2606.12797","citing_title":"The Containment Gap: How Deployed Agentic AI Frameworks Fail Public-Facing Safety Requirements","ref_index":30,"is_internal_anchor":false}]},"formal_canon":{"evidence_count":0,"sample":[],"anchors":[]},"links":{"html":"https://pith.science/pith/IQBN54D56TYHOQPC4GAMNJ7QIJ","json":"https://pith.science/pith/IQBN54D56TYHOQPC4GAMNJ7QIJ.json","graph_json":"https://pith.science/api/pith-number/IQBN54D56TYHOQPC4GAMNJ7QIJ/graph.json","events_json":"https://pith.science/api/pith-number/IQBN54D56TYHOQPC4GAMNJ7QIJ/events.json","paper":"https://pith.science/paper/IQBN54D5"},"agent_actions":{"view_html":"https://pith.science/pith/IQBN54D56TYHOQPC4GAMNJ7QIJ","download_json":"https://pith.science/pith/IQBN54D56TYHOQPC4GAMNJ7QIJ.json","view_paper":"https://pith.science/paper/IQBN54D5","resolve_alias":"https://pith.science/api/pith-number/resolve?arxiv=2507.08862&json=true","fetch_graph":"https://pith.science/api/pith-number/IQBN54D56TYHOQPC4GAMNJ7QIJ/graph.json","fetch_events":"https://pith.science/api/pith-number/IQBN54D56TYHOQPC4GAMNJ7QIJ/events.json","actions":{"anchor_timestamp":"https://pith.science/pith/IQBN54D56TYHOQPC4GAMNJ7QIJ/action/timestamp_anchor","attest_storage":"https://pith.science/pith/IQBN54D56TYHOQPC4GAMNJ7QIJ/action/storage_attestation","attest_author":"https://pith.science/pith/IQBN54D56TYHOQPC4GAMNJ7QIJ/action/author_attestation","sign_citation":"https://pith.science/pith/IQBN54D56TYHOQPC4GAMNJ7QIJ/action/citation_signature","submit_replication":"https://pith.science/pith/IQBN54D56TYHOQPC4GAMNJ7QIJ/action/replication_record"}},"created_at":"2026-07-05T11:35:59.478024+00:00","updated_at":"2026-07-05T11:35:59.478024+00:00"}