AgentVisor: Defending LLM Agents against Prompt Injection Via Semantic Virtualization
Large Language Model LLM agents are increasingly used to automate complex workflows, but integrating untrusted external data with privileged execution exposes them to severe security risks, particularly direct and indirect prompt injection. Existing defenses face significant challenges in balanci...