Zenaique
Glossary · Safety

Prompt Injection

Also known as: Prompt injection attack, Indirect prompt injection

Attacker text in user input or retrieved content overrides the model's system prompt or hijacks tool calls.

A security vulnerability where adversarial input (in the user message, retrieved document, or tool output) manipulates the LLM into ignoring its instructions or executing unintended actions. Especially dangerous in agentic systems with tool access.

In practice

The OWASP #1 risk for LLM apps. Senior security interviews probe direct vs indirect injection and mitigation patterns (untrusted-data isolation, output validation).

How it compares

Prompt injection is the attack; guardrails are part of the defense.

Related topics

Questions that mention this term

Related terms