{"id":230957,"date":"2025-04-19T12:05:06","date_gmt":"2025-04-19T04:05:06","guid":{"rendered":"https:\/\/magicalbits.net\/?p=230957"},"modified":"2025-04-19T12:05:06","modified_gmt":"2025-04-19T04:05:06","slug":"camel-offers-a-promising-new-direction-for-mitigating-prompt-injection-attacks","status":"publish","type":"post","link":"https:\/\/magicalbits.net\/?p=230957","title":{"rendered":"CaMeL offers a promising new direction for mitigating prompt injection attacks"},"content":{"rendered":"<blockquote><p>Most of the proposed solutions I have seen to prompt injection to date involve layering on even more AI. I wrote about why I think this is a bad idea in You can\u2019t solve AI security problems with more AI. AI techniques use probabilities: you can train a model on a collection of previous prompt injection examples and get to a 99% score in detecting new ones&#8230; and that\u2019s useless, because in application security 99% is a failing grade:<\/p><\/blockquote>\n<p>Source: <em><a href=\"https:\/\/simonwillison.net\/2025\/Apr\/11\/camel\/#atom-everything\">CaMeL offers a promising new direction for mitigating prompt injection attacks<\/a><\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Most of the proposed solutions I have seen to prompt injection to date involve layering on even more AI. I wrote about why I think this is a bad idea in You can\u2019t solve AI security problems with more AI. AI techniques use probabilities: you can train a model on a collection of previous prompt [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"ep_exclude_from_search":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-230957","post","type-post","status-publish","format-standard","hentry","category-uncategorised"],"jetpack_featured_media_url":"","jetpack-related-posts":[],"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/magicalbits.net\/index.php?rest_route=\/wp\/v2\/posts\/230957","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/magicalbits.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/magicalbits.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/magicalbits.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/magicalbits.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=230957"}],"version-history":[{"count":1,"href":"https:\/\/magicalbits.net\/index.php?rest_route=\/wp\/v2\/posts\/230957\/revisions"}],"predecessor-version":[{"id":230958,"href":"https:\/\/magicalbits.net\/index.php?rest_route=\/wp\/v2\/posts\/230957\/revisions\/230958"}],"wp:attachment":[{"href":"https:\/\/magicalbits.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=230957"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/magicalbits.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=230957"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/magicalbits.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=230957"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}