What is prompt injection and how do you defend against it?hard

Type
conceptual
Topic
prompt-injection
Frequency
common
Tags
prompt-injection, security
Answer

Prompt injection is malicious or conflicting input that tries to override the intended instructions.

Explanation

Defenses include treating retrieved and user-provided text as data, separating instructions from content, limiting tool permissions, validating outputs, logging decisions, and using guardrails for high-risk flows.

Follow-upWhy should retrieved documents be treated as untrusted input?