Y
Hacker News
new
|
ask
|
show
|
jobs
by
swyx
138 days ago
> The real key materializes only when the sandbox makes an outbound request to an approved host. If prompt-injected code tries to exfiltrate that placeholder to evil.com? Useless.
pretty smart. why isn't this the norm?