AgentShield: Deception-based Compromise Detection for Tool-using LLM Agents

ArXi:2605.11026v1 Announce Type: cross Defenses against indirect prompt injection (IPI) in tool-using LLM agents share two structural weaknesses. First, they all attempt to prevent attacks rather than detect the compromises that slip through. Second, they have only been evaluated in English, leaving users of low-resource languages such as Kurdish and Arabic without tested protection.