zlacker
[parent]
[thread]
0 comments
1. 0xdead+(OP)
[view]
[source]
2026-01-19 17:21:53
This can maybe work on a small 7b or 14b model, but >70b models are already pretty good at identifying prompt injections. You will probably need to use weird/out-of-distribution tokens (remember MagicKarp?).
[go to top]