Ooof. "Securing" any LLM just feels like such a house-of-cards.

Like some modern echo of trying to make arbitrary SQL "safe" with without parametrized queries through quick-and-dirty fixes, or parsing arbitrarily nested HTML just with increasingly insane regular-expressions.