|
|
|
|
|
|
by DebtDeflation
237 days ago
|
|
|
>LLMs don't have any distinction between instructions & data And this is why prompt injection really isn't a solvable problem on the LLM side. You can't do the equivalent of (grep -i "DROP TABLE" form_input). What you can do is not just blindly execute LLM generated code. |
|
|