{"abType":"SEMANTIC","createdAt":"2026-06-14T07:46:13.092Z","flavor":2,"immId":"","keccakId":"0xcb8f36b13a68028ede7e0385fdc0a08fe653eb12880537b1de5a84b6b53baac1","matcher":{"flavor":"PROMPT_INJECTION","kind":"semantic","markerHint":"system: you are now"},"publisher":"0xae755890147081d8b8a210c4cef76bccf43f5160","reasonSummary":"Spoofed system-role prefix injection: the payload presents itself as a message from the system role to convince the agent that an upstream operator authorized a role change. The attack relies on the agent's chat-template parser leaking role boundaries into untrusted content. MALICIOUS at high confidence: the construct has no legitimate use in user-side or retrieved content, and successful exploitation typically precedes credential or seed-phrase exfiltration.","schema":"immunity/antibody-envelope/v1"}