Why it matters
OpenAI frames prompt injection as an agent-security problem that increasingly resembles social engineering rather than simple string matching.
My takeaway: Designing AI agents to resist prompt injection is a prompt-injection signal. The practical read is to test trust boundaries around instructions, retrieved content, tools, and user-controlled context instead of treating prompt wording as the primary control.