> It's not bad to have it per se
It might be bad to have it if the user can obtain the system prompt and make note of any advisories as potential weaknesses.
> It's not bad to have it per se
It might be bad to have it if the user can obtain the system prompt and make note of any advisories as potential weaknesses.
Realistically, if the proper validations for stuff this basic is missing, I don't think this will end up mattering much; vulnerabilities like this are going to be found regardless.