It's important to note that there are many types of prompt injection, and many ways to make them hard to detect, so it's an impossible problem to fully solve just at this level. Clean and other prompt injection detectors should be viewed akin to an email filter to reduce the number of phishing attempts that make it to end users, rather than the entire basis of your security.