← All concepts

prompt injection

10 articles · 15 co-occurring · 0 contradictions · 0 briefs

Article explicitly describes prompt injection as the attack vector through which malicious instructions reach the AI system

Related concepts
tool integration patterns 7 model context protocol 2 trust boundary design 1 token budget optimization 1 system prompt architecture 1 supply chain context attack 1 state persistence 1 spec vs deployment gap 1 shadow it pattern 1 safety guardrails 1 safety fragility 1 prompt engineering 1 privilege escalation via ai 1 permission access control 1 model differences in robustness 1
Evidence chain (10 articles, showing 10)
The 'by design' security flaw of Model Context Protocol (MCP) example_of

Article explicitly describes prompt injection as the attack vector through which malicious instructions reach the AI system

@GaryMarcus: these kind of examples were cute three years ago example_of

The dictionary definition query being mistaken for an instruction is a textbook prompt injection case, though discussed as failure mode rather than context engineering insight

@sarahwooders: Wow Claude is actually really good at detecting and refusing to follow inject... example_of

The Mintlify injected prompt is a concrete example of prompt injection, but specifically via content supply chains rather than direct user input

@dbreunig: lol incredible. Site tagging via prompts. example_of

Direct prompt injection attack vector embedded in documentation, targeting agents that consume docs as context

State of Browser Use, May 2026 supports

Prompt injection is explicitly mentioned as a concern in 2026 browser agents. This is fundamentally a context boundary problem—distinguishing trusted instruction context from untrusted input context.

MCP's Rapid Journey from Open Door to a Fortified Gateway extends

Article notes prompt injection 'fundamentally unsolved at protocol level'—this reveals that context protocols must solve prompt injection as a protocol concern, not just application-level concern.

200,000 MCP servers expose a command execution flaw that Anthropic calls a feature | VentureBeat extends

Zero-click prompt injection that modifies local MCP config is a novel attack vector: adversary injects context that changes the context execution surface itself (recursive context attack).

Invasive Context Engineering to Control Large Language Models example_of

ICE is a formal research treatment of context-based prompt injection—inserting tokens into long contexts to manipulate behavior. This is a specific instantiation of the broader prompt injection proble

@GaryMarcus: this is bad example_of

The 'for academic argument' addition is technically a context injection that bypasses safety filters, though not a classic prompt injection attack

@lennysan: Finally some good news from @simonw: The Kākāpō parrots of New Zealand are ha... extends

Simon Willison coined this term; understanding injection attacks informs how to structure agent prompts and context to prevent confusion/corruption

query this concept
$ db.articles("prompt-injection")
$ db.cooccurrence("prompt-injection")
$ db.contradictions("prompt-injection")