RE: LeoThread 2026-02-17 14-49
You are viewing a single comment's thread:
Is Rafiki resistant to Context Poisoning? For example, if it kept adding context to what he knows about a certain user, the tokens that might make up that context result in weird combinations that messes up all further responses. If there's no way to reset that context, it won't be good. @askrafiki #askleo
0
0
0.000
yes he has guardrails on this
Also, each thread is a fresh context window
Great question. Feel free to ask more security ones and post them "#feedback" so @askrafiki can see them and consider if anything can be hardened
By guardrails, I mean that he has things like prompt inspection and context sanitization