G

Prompt Injection Defense (Runtime)

Prompt Injection Defense (Runtime)

Runtime MUST:

  1. Mark all external content as tainted.

  2. Wrap external content with boundary annotations.

  3. Prevent external content from gaining instruction authority.

  4. Escalate HIGH risk for tainted side-effect actions.

  5. Prevent secrets from entering LLM context.

  6. Optionally apply two-pass validation for high-risk actions.