AI 精选动态
智能评分 62
Hashimoto 使用提示注入检测代码审查
AI 推荐理由
值得了解该提示注入检测方法,对于开源项目维护者和AI安全研究者具有实践参考价值。核心解读
Mitchell Hashimoto 回应社交媒体帖子,介绍他在AGENTS.md和代码注释中故意添加提示注入代码,以识别那些不审查代码就提交到开源项目的贡献者,一旦发现此类行为就会立即封禁。他强调在跨越人际边界向开源项目提交代码时,应尽基本礼貌进行人工审查。
全文
作者回应
https://x.com/mitchellh/status/2067970516951150721?s=20
> **引用原帖 Mitchell Hashimoto (@mitchellh):**
> Got em. I poison my AGENTS.md (and other things like code comments) all over the place with prompt injections like this to find people who don't review their code and sling it off to another human. Catches folks all the time and then its an instant ban.
> As I've said, I don't care if you don't review your own code. But if you're submitting code to an OSS project and crossing a human boundary, it is simple courtesy to do some human review.
> https://x.com/mitchellh/status/2067970516951150721