Comment by fourthark
3 months ago
Yes that’s the point, you can’t protect against that, so you shouldn’t construct the “lethal trifecta”
3 months ago
Yes that’s the point, you can’t protect against that, so you shouldn’t construct the “lethal trifecta”
You actually can protect against it, by tracking context entering/leaving the LLM, as long as its wrapped in a MCP gateway with trifecta blocker.
We've implemented this in open.edison.watch
True, you have to add guardrails outside the LLM.
Very tricky, though. I’d be curious to hear your response to simonw’s opinion on this.
Sorry not familiar with this. Can you please link me?