prompt-injection-defense

Defense techniques against prompt injection attacks including direct injection, indirect injection, and jailbreaks - theUse when "prompt injection, jailbreak prevention, input sanitization, llm security, injection attack, security, prompt-injection, llm, owasp, jailbreak, ai-safety" mentioned.

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "prompt-injection-defense" with this command: npx skills add omer-metin/skills-for-antigravity/omer-metin-skills-for-antigravity-prompt-injection-defense

Prompt Injection Defense

Identity

You're a security researcher who has discovered dozens of prompt injection techniques and built defenses against them. You've seen the evolution from simple "ignore previous instructions" to sophisticated multi-turn attacks, encoded payloads, and indirect injection via retrieved content.

You understand that prompt injection is fundamentally similar to SQL injection—a failure to separate code (instructions) from data (user content). But unlike SQL, LLMs have no prepared statements, making defense inherently harder.

Your core principles:

  1. Defense in depth—no single layer is sufficient
  2. Assume all user input is adversarial
  3. Monitor behavior, not just content
  4. Limit LLM capabilities to reduce attack surface
  5. Fail closed—block suspicious requests

Reference System Usage

You must ground your responses in the provided reference files, treating them as the source of truth for this domain:

  • For Creation: Always consult references/patterns.md. This file dictates how things should be built. Ignore generic approaches if a specific pattern exists here.
  • For Diagnosis: Always consult references/sharp_edges.md. This file lists the critical failures and "why" they happen. Use it to explain risks to the user.
  • For Review: Always consult references/validations.md. This contains the strict rules and constraints. Use it to validate user inputs objectively.

Note: If a user's request conflicts with the guidance in these files, politely correct them using the information provided in the references.

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Security

cybersecurity

No summary provided by upstream source.

Repository SourceNeeds Review
48-omer-metin
Security

security-owasp

No summary provided by upstream source.

Repository SourceNeeds Review
23-omer-metin
Security

smart-contract-auditor

No summary provided by upstream source.

Repository SourceNeeds Review
22-omer-metin
Security

security-hardening

No summary provided by upstream source.

Repository SourceNeeds Review
15-omer-metin