PromptSleuth: Detecting Prompt Injection via Semantic Intent Invariance
Mengxiao Wang, Yuxuan Zhang, Guofei Gu

TL;DR
PromptSleuth introduces a semantic intent-based approach to detect prompt injection attacks on LLMs, outperforming existing defenses by focusing on task-level intent invariance across diverse and evolving attack strategies.
Contribution
The paper presents a new benchmark for prompt injection detection and proposes PromptSleuth, a semantic reasoning framework that enhances robustness against diverse attack techniques.
Findings
PromptSleuth outperforms existing defenses on new comprehensive benchmarks.
Existing defenses are less effective against multi-task and obfuscated prompt injections.
Semantic intent invariance is a robust indicator for detecting prompt injections.
Abstract
Large Language Models (LLMs) are increasingly integrated into real-world applications, from virtual assistants to autonomous agents. However, their flexibility also introduces new attack vectors-particularly Prompt Injection (PI), where adversaries manipulate model behavior through crafted inputs. As attackers continuously evolve with paraphrased, obfuscated, and even multi-task injection strategies, existing benchmarks are no longer sufficient to capture the full spectrum of emerging threats. To address this gap, we construct a new benchmark that systematically extends prior efforts. Our benchmark subsumes the two widely-used existing ones while introducing new manipulation techniques and multi-task scenarios, thereby providing a more comprehensive evaluation setting. We find that existing defenses, though effective on their original benchmarks, show clear weaknesses under our…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsTopic Modeling · Text Readability and Simplification · Anomaly Detection Techniques and Applications
