Prompt Injection Defense Weekly

JAW Hijacks 4,714 GitHub Workflows via Prompt Injection. Here Is the Defense.

A new paper reveals 4,714 hijackable GitHub Actions pipelines — including official Claude Code and Gemini CLI integrations. This week's defense: a reusable system prompt template combining XML-tag content isolation with provenance tracking, paired with capability minimization and output validation.