Its so funny its a SQL injection because *drum roll* you can't santize llm input... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		bxguff 5 days ago \| parent \| context \| favorite \| on: How we hacked McKinsey's AI platform Its so funny its a SQL injection because drum roll you can't santize llm inputs. Some problems are evergreen.

		help

dmix 5 days ago [–]

Technically it was a search box input no prompts. Which tbf are often endpoints reused by RAGs

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact