Saved in:
Bibliographic Details
Main Authors: Sahoo, Devanshu, Majhi, Vasudev, Neekhra, Arjun, Sinha, Yash, Mandal, Murari, Kumar, Dhruv
Format: Preprint
Published: 2025
Subjects:
Online Access:https://arxiv.org/abs/2512.10415
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866912872899018752
author Sahoo, Devanshu
Majhi, Vasudev
Neekhra, Arjun
Sinha, Yash
Mandal, Murari
Kumar, Dhruv
author_facet Sahoo, Devanshu
Majhi, Vasudev
Neekhra, Arjun
Sinha, Yash
Mandal, Murari
Kumar, Dhruv
contents The use of Large Language Models (LLMs) as automatic judges for code evaluation is becoming increasingly prevalent in academic environments. But their reliability can be compromised by students who may employ adversarial prompting strategies in order to induce misgrading and secure undeserved academic advantages. In this paper, we present the first large-scale study of jailbreaking LLM-based automated code evaluators in academic context. Our contributions are: (i) We systematically adapt 20+ jailbreaking strategies for jailbreaking AI code evaluators in the academic context, defining a new class of attacks termed academic jailbreaking. (ii) We release a poisoned dataset of 25K adversarial student submissions, specifically designed for the academic code-evaluation setting, sourced from diverse real-world coursework and paired with rubrics and human-graded references, and (iii) In order to capture the multidimensional impact of academic jailbreaking, we systematically adapt and define three jailbreaking metrics (Jailbreak Success Rate, Score Inflation, and Harmfulness). (iv) We comprehensively evalulate the academic jailbreaking attacks using six LLMs. We find that these models exhibit significant vulnerability, particularly to persuasive and role-play-based attacks (up to 97% JSR). Our adversarial dataset and benchmark suite lay the groundwork for next-generation robust LLM-based evaluators in academic code assessment.
format Preprint
id arxiv_https___arxiv_org_abs_2512_10415
institution arXiv
publishDate 2025
record_format arxiv
spellingShingle How to Trick Your AI TA: A Systematic Study of Academic Jailbreaking in LLM Code Evaluation
Sahoo, Devanshu
Majhi, Vasudev
Neekhra, Arjun
Sinha, Yash
Mandal, Murari
Kumar, Dhruv
Software Engineering
Artificial Intelligence
The use of Large Language Models (LLMs) as automatic judges for code evaluation is becoming increasingly prevalent in academic environments. But their reliability can be compromised by students who may employ adversarial prompting strategies in order to induce misgrading and secure undeserved academic advantages. In this paper, we present the first large-scale study of jailbreaking LLM-based automated code evaluators in academic context. Our contributions are: (i) We systematically adapt 20+ jailbreaking strategies for jailbreaking AI code evaluators in the academic context, defining a new class of attacks termed academic jailbreaking. (ii) We release a poisoned dataset of 25K adversarial student submissions, specifically designed for the academic code-evaluation setting, sourced from diverse real-world coursework and paired with rubrics and human-graded references, and (iii) In order to capture the multidimensional impact of academic jailbreaking, we systematically adapt and define three jailbreaking metrics (Jailbreak Success Rate, Score Inflation, and Harmfulness). (iv) We comprehensively evalulate the academic jailbreaking attacks using six LLMs. We find that these models exhibit significant vulnerability, particularly to persuasive and role-play-based attacks (up to 97% JSR). Our adversarial dataset and benchmark suite lay the groundwork for next-generation robust LLM-based evaluators in academic code assessment.
title How to Trick Your AI TA: A Systematic Study of Academic Jailbreaking in LLM Code Evaluation
topic Software Engineering
Artificial Intelligence
url https://arxiv.org/abs/2512.10415