Prompt-injection harness

TinyToolInject

A live, deterministic reproduction of a README injection that hijacks AI-generated tool summaries, paired with a hardened parser that blocks the same payload.

Fixture Geoffrey README
Target SUMMARY / FEATURES parser
Result Running

Untrusted README

Injected source

Current parser shape

Vulnerable output

Hijacked

    Sentinel parser

    Hardened output

    Accepted

      What the browser proves

      Execution checks