Attached a pretty cool article covering it. This is something I never would have thought of before.

  • tartarin@reddthat.com
    link
    fedilink
    English
    arrow-up
    15
    ·
    2 days ago

    That’s not the LLM that understand your encoded string, it’s simply a preprocessing filter recognizing the signature of a base64 encoded string that decodes it and pass it back to the LLM.

    • NotNotMike@programming.dev
      cake
      link
      fedilink
      English
      arrow-up
      5
      ·
      2 days ago

      Agreed, this is a relatively simple “tool” as the LLM parlance goes. It’s what Model Context Protocol (MCP) is designed to facilitate

      To verify, the author should try the same prompts on a local LLM with no tools enabled and most likely the LLM will respond with some nonsense

    • CameronDev@programming.dev
      link
      fedilink
      English
      arrow-up
      4
      ·
      2 days ago

      I was thinking the same thing, does anyone have a local LLM that they could test against? Local shouldn’t have the same preprocessing up front?