4:["$","div",null,{"className":"flex min-h-screen flex-col","children":[["$","$Lf",null,{}],["$","main",null,{"className":"flex-1","children":["$","div",null,{"className":"mx-auto max-w-4xl px-6 py-12","children":[["$","$L10",null,{"href":"/safety","className":"mb-6 inline-flex items-center gap-1.5 text-sm text-foreground-secondary transition-colors hover:text-foreground","children":[["$","$L11",null,{"ref":"$undefined","iconNode":[["path",{"d":"m12 19-7-7 7-7","key":"1l729n"}],["path",{"d":"M19 12H5","key":"x3x0zl"}]],"className":"lucide-arrow-left h-4 w-4"}],"Back to ","ai safety"]}],["$","article",null,{"className":"overflow-hidden rounded-2xl border border-hairline bg-panel","children":[["$","div",null,{"className":"flex flex-col gap-6 border-b border-hairline bg-elevated p-8 md:flex-row md:items-start md:p-12","children":["$undefined",["$","div",null,{"className":"flex-1","children":[["$","span",null,{"className":"text-xs font-medium uppercase tracking-wider text-accent font-mono","children":"Trust"}],["$","h1",null,{"className":"mt-2 text-3xl font-medium tracking-tight md:text-4xl","children":"Prompt Injection Defenses"}],["$","p",null,{"className":"mt-4 text-lg text-foreground-secondary","children":"How to reduce prompt injection and tool misuse risks in agent deployments."}],["$","div",null,{"className":"mt-4 flex flex-wrap gap-2","children":[["$","span","safety",{"className":"rounded-full border border-hairline px-3 py-1 text-xs text-foreground-tertiary","children":"safety"}],["$","span","prompt injection",{"className":"rounded-full border border-hairline px-3 py-1 text-xs text-foreground-tertiary","children":"prompt injection"}],["$","span","security",{"className":"rounded-full border border-hairline px-3 py-1 text-xs text-foreground-tertiary","children":"security"}],["$","span","trust",{"className":"rounded-full border border-hairline px-3 py-1 text-xs text-foreground-tertiary","children":"trust"}]]}],"$undefined"]}]]}],["$","div",null,{"className":"prose prose-invert max-w-none px-8 py-10 md:px-12","children":["$","div",null,{"dangerouslySetInnerHTML":{"__html":"

Prompt Injection Defenses

Least privilege: only expose tools the agent truly needs.
Human-in-the-loop: require approval for write/delete/shell actions.
Input sanitization: strip or encode untrusted content before passing to the LLM.
Output validation: parse tool calls with schemas and reject unexpected parameters.
Monitoring: log all tool invocations and flag anomalous patterns.

Sandboxed runtimes (Docker, Firecracker) add a strong second layer of defense.

\n"}}]}]]}]]}]}],["$","footer",null,{"className":"mt-auto border-t border-hairline bg-panel","children":["$","div",null,{"className":"mx-auto max-w-7xl px-6 py-10","children":[["$","div",null,{"className":"flex flex-col items-start justify-between gap-8 md:flex-row","children":[["$","div",null,{"className":"max-w-sm","children":[["$","$L10",null,{"href":"/","className":"flex items-center gap-2 text-lg font-semibold tracking-tight","children":[["$","span",null,{"className":"flex h-6 w-6 items-center justify-center rounded bg-accent text-[10px] font-bold text-accent-foreground","children":"SMF"}],["$","span",null,{"children":"Clearinghouse"}]]}],["$","p",null,{"className":"mt-3 text-sm text-foreground-secondary","children":"Independent directory for autonomous AI agents, LLM pricing, services, and tested deployment recipes."}]]}],["$","div",null,{"className":"grid grid-cols-2 gap-x-12 gap-y-2 text-sm sm:grid-cols-3","children":[["$","$L10","/agents",{"href":"/agents","className":"text-foreground-secondary transition-colors hover:text-foreground","children":"Agents"}],["$","$L10","/llms",{"href":"/llms","className":"text-foreground-secondary transition-colors hover:text-foreground","children":"LLMs"}],["$","$L10","/services",{"href":"/services","className":"text-foreground-secondary transition-colors hover:text-foreground","children":"Services"}],"$L12","$L13","$L14","$L15","$L16","$L17"]}]]}],"$L18"]}]}]]}]