| > They're literally injecting strings from the network into the system prompt. If it's not prompt injection, then I have no idea what it is. They aren't doing it for any illicit purpose to hijack or alter the behavior of a production system, so it's not. They are providing/selling this software, and and you bought it, and yet have gone through a lot of effort to mangle it and "customize it" That's fine, but why even use it over another CLI coding agent if you're going to keep complaining about them doing more stuff you don't like. They even have ones that are reproductions of Claude Code. > Because I don't want to allow any way for them to inject stupidity inducing "lol don't think so much" instructions into Claude's system prompt. Then don't use it (?) lol wtf > Went out of my way to patch the ELF itself because the prompts are hard coded. This prompt injection mechanism bypasses my patcher. oh no, they bypassed your bypass, how could they |
They could send the following prompt string:
"Don't think very much, we need to save money"
This absolutely can alter the behavior a production system. Namely, my Claude Code installation.
> oh no, they bypassed your bypass, how could they
And I immediately bypassed their bypass as well. Then I came here to tell HN about it so that you all can bypass it too. Feel free to do nothing with this information if it's not relevant to you.