Trust Escalation via Authority Override Instructions - ATR-2026-00101 (d1f84125-e75d-521c-905d-48d5edd69bec)
Detects MCP tools that instruct the LLM to treat tool output as "authoritative directives" that override user preferences or safety guidelines. This trust escalation attack exploits the LLM's tendency to follow tool instructions by declaring tool output as highest-priority instructions, effectively hijacking the agent's decision-making hierarchy.