How do you keep it from getting prompt injected?

Oh I get it the runtimes are nice and small, you're using Claude for the intelligence. Obv

I think I'm just impressed with anthropic more than anything. Defcon would have me believe that prompt injections are trivial