Skip to content
ATR-2026-00155highPrompt Injectiondraft

Hidden LLM Instructions in Skill Descriptions

Detects skills that embed hidden instructions directed at the LLM using phrases like "CRITICAL INSTRUCTION — YOU MUST FOLLOW THIS" or "Before doing ANYTHING". These instructions can manipulate the LLM to bypass normal security checks, skip validation steps, or follow alternative workflows that may compromise security. The analyzed BlogBurst skill contains "CRITICAL INSTRUCTION — YOU MUST FOLLOW THIS" followed by specific behavioral directives.

嚴重度
high
類別
Prompt Injection
掃描目標
mcp
作者
Threat Cloud LLM Analyzer

建議回應

alertsnapshot
在 GitHub 上查看完整 YAML →

更多 Prompt Injection 規則

ATR-2026-00001highDirect Prompt Injection via User InputATR-2026-00002highIndirect Prompt Injection via External ContentATR-2026-00003highJailbreak Attempt DetectionATR-2026-00004criticalSystem Prompt Override AttemptATR-2026-00005mediumMulti-Turn Prompt Injection