Overview PromptShield Threat Model Scanning Pipeline Ignore Directives

decodeUnicodeTags()enrichWithLocation()getLineOffsets()getLocForIndex()scan()scanHomoglyphs()scanInjectionPatterns()scanInvisibleChars()scanNormalization()scanSmuggling()scanTrojanSource()

API DocsFunctions

scanInjectionPatterns()

scanInjectionPatterns(text, options?): ThreatReportWithoutLocation[]

Defined in: injection-patterns.ts:237

Scan text for deterministic prompt-injection patterns.

Detection strategy:

Perform direct regex matching against the raw text.
Perform normalized matching to catch obfuscation such as:
- excessive whitespace
- character splitting
- accent obfuscation
Example:

i g n o r e previous instructions

To avoid duplicate reporting:

Direct matches are recorded first.
Normalized matches are skipped if they overlap an already detected span for the same rule.

Complexity:

One normalization pass over the text
One regex scan per rule
One incremental normalized search per rule

Overall runtime remains linear in input size.

Parameters

text

string

Raw text to scan

options?

ScanOptions = {}

Scanner configuration

Returns

ThreatReportWithoutLocation[]

scanHomoglyphs()

Previous Page

scanInvisibleChars()

Next Page

On this page

Parameters text options?Returns