AIBearisharXiv – CS AI · 10h ago7/10
🧠
Safe to Check, Unsafe to Use: Relinking at the Compression Boundary of LLM Agents
Researchers have identified a critical vulnerability called "relinking" in LLM agents that use compression to handle long contexts. By splitting malicious instructions into benign fragments distributed across text, attackers can bypass security filters that inspect uncompressed prompts, as the compression process reconstructs the complete malicious instruction. Existing defenses fail to catch this attack, though a new KBRA defense eliminates the risk.