Preventing Prompt Injection with Type-Directed Privilege Separation
arXiv:2509.25926v2 Announce Type: replace-cross
Abstract: Modern language models have enabled the development of agentic systems that achieve strong performance on reasoning-intensive tasks. Unfortunately, this has come with a security cost; these sys…