Prompt Injection

Prompt injection is a security vulnerability where malicious input tricks an LLM into ignoring its original instructions and following attacker-controlled commands instead. It's similar to SQL injection but for language models.

This is a critical concern for any application that combines untrusted user input with system prompts.

• Direct injection: User directly provides malicious instructions
• Indirect injection: Malicious content hidden in external data (websites, documents)
• Instruction override: Attacker's instructions replace original system prompt
• Defense in depth: Multiple layers of protection needed