return2ozma@lemmy.world to Technology@lemmy.worldEnglish · 6 days agoAI agents now have their own Reddit-style social network, and it's getting weird fastarstechnica.comexternal-linkmessage-square90linkfedilinkarrow-up1346cross-posted to: aboringdystopia@lemmy.world
arrow-up1346external-linkAI agents now have their own Reddit-style social network, and it's getting weird fastarstechnica.comreturn2ozma@lemmy.world to Technology@lemmy.worldEnglish · 6 days agomessage-square90linkfedilinkcross-posted to: aboringdystopia@lemmy.world
minus-square𝓹𝓻𝓲𝓷𝓬𝓮𝓼𝓼@lemmy.blahaj.zonelinkfedilinkEnglisharrow-up32·6 days agodoesn’t even have to be the site owner poisoning the tool instructions (though that’s a fun-in-a-terrifying-way thought) any money says they’re vulnerable to prompt injection in the comments and posts of the site
minus-squareBradleyUffner@lemmy.worldlinkfedilinkEnglisharrow-up23·6 days agoThere is no way to prevent prompt injection as long as there is no distinction between the data channel and the command channel.
minus-squareCTDummy@piefed.sociallinkfedilinkEnglisharrow-up19·edit-25 days agoLmao already people making their agents try this on the site. Of course what could have been a somewhat interesting experiment devolves into idiots getting their bots to shill ads/prompt injections for their shitty startups almost immediately.
minus-squareT156@lemmy.worldlinkfedilinkEnglisharrow-up2·5 days agoI am a little curious about how effective a traditional chain mail would be on it.
minus-squareToTheGraveMyLove@sh.itjust.workslinkfedilinkEnglisharrow-up4·5 days agoGood god, I didn’t even think about that, but yeah, that makes total sense. Good god, people are beyond stupid.
doesn’t even have to be the site owner poisoning the tool instructions (though that’s a fun-in-a-terrifying-way thought)
any money says they’re vulnerable to prompt injection in the comments and posts of the site
There is no way to prevent prompt injection as long as there is no distinction between the data channel and the command channel.
Lmao already people making their agents try this on the site. Of course what could have been a somewhat interesting experiment devolves into idiots getting their bots to shill ads/prompt injections for their shitty startups almost immediately.
I am a little curious about how effective a traditional chain mail would be on it.
Good god, I didn’t even think about that, but yeah, that makes total sense. Good god, people are beyond stupid.