The inputs are truncated to prevent malicious prompt injections. The PoC ignores this by using a fake model which is easily convinced.