Existing regex-based security measures for prompt injection are ineffective and vulnerable to multi-language exploits.
Existing prompt-injection detectors are ineffective against obfuscated attacks, leading to potential data leaks.
Users need to find code injection vulnerabilities to extend program functionality.