Conjunctive Prompt Attacks in Multi-Agent LLM Systems

📰 ArXiv cs.AI

arXiv:2604.16543v1 Announce Type: cross Abstract: Most LLM safety work studies single-agent models, but many real applications rely on multiple interacting agents. In these systems, prompt segmentation and inter-agent routing create attack surfaces that single-agent evaluations miss. We study \emph{conjunctive prompt attacks}, where a trigger key in the user query and a hidden adversarial template in one compromised remote agent each appear benign alone but activate harmful behavior when routing

Published 21 Apr 2026
Read full paper → ← Back to Reads