logoalt Hacker News

InsideOutSantatoday at 5:38 PM0 repliesview on HN

Yeah, I suspect the main reason this was rejected is simply because it's not fixable. This is just how LLMs work. This LLM ingests untrusted data, so there will always be a non-zero chance that this type of prompt injection succeeds.