Kill-Chain Canaries: Stage-Level Tracking of Prompt Injection Across Attack Surfaces and Model Safety Tiers
arXiv:2603.28013v3 Announce Type: replace-cross
Abstract: Multi-agent LLM systems are entering production — processing documents, managing workflows, acting on behalf of users — yet their resilience to prompt injection is still evaluated with a sing…