Skip to content

Add additional security topics to the book #3

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wmeints opened this issue Mar 10, 2025 · 0 comments
Open

Add additional security topics to the book #3

wmeints opened this issue Mar 10, 2025 · 0 comments

Comments

@wmeints
Copy link
Owner

wmeints commented Mar 10, 2025

I left out some important security measures in the book. Some topics in the book cover essential security measures, but they could be a lot clearer. The plan is to add additional security content throughout the chapters in the upcoming weeks after I finish chapter 9.

The following list of topics need to be covered in addition to the existing content:

  • How to mitigate prompt injection in RAG systems
  • How to mitigate privilege escalation in tool calling and how to make tool calling secure in general

Note that I already have some pieces in place, which I'd like to highlight in case people get worried ;-)

  • Prompt injection mitigation is covered and points toward jailbreak filters, etc.
  • We covered monitoring of LLM-based applications
  • The book explains how to handle PII filtering and when this becomes important
  • The book also covers how to prevent XSS attacks and other dangerous code generation output
@wmeints wmeints changed the title Add security topics to the book Add additional security topics to the book Mar 10, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@wmeints