Agentic Security
Indirect prompt injection is SSRF for the agent era
SSRF is a server fetching an attacker's URL and trusting the response. Indirect prompt injection is an agent reading attacker content and trusting it as instructions. Same missing boundary between data and control — here are the exact gadgets, the encodings that beat filters, and why 'ignore previous instructions' stopped working years ago.
Jul 3, 2026 · 7 min read