What is prompt injection and how do you defend against it?hard
Answer
Prompt injection is malicious or conflicting input that tries to override the intended instructions.
Explanation
Defenses include treating retrieved and user-provided text as data, separating instructions from content, limiting tool permissions, validating outputs, logging decisions, and using guardrails for high-risk flows.
Follow-upWhy should retrieved documents be treated as untrusted input?