> that might be a bad example as you could for example be in ukraine, or somilia currently and quiet possibly be true.
That's what makes it a good example. Otherwise you'd ignore this as noise.
> Most people however aren't going to act other than to ask questions and convey sympathies unless they know you. further questions lead to attempts to verify your information
You're making assumptions about what I'm trying to get you to do with this prompt. But consider that maybe I know human adults are more difficult to effectively manipulate by prompt injection than LLMs, so maybe all I wanted to do is to prime you for a conversation about war today? Or wanted you to check my profile, looking for location, and ending up exposed to a product I linked, already primed with sympathy?
Even with GPT-4 you already have to consider that what the prompt says != what effect it will have on the model, and adjust accordingly.
That's what makes it a good example. Otherwise you'd ignore this as noise.
> Most people however aren't going to act other than to ask questions and convey sympathies unless they know you. further questions lead to attempts to verify your information
You're making assumptions about what I'm trying to get you to do with this prompt. But consider that maybe I know human adults are more difficult to effectively manipulate by prompt injection than LLMs, so maybe all I wanted to do is to prime you for a conversation about war today? Or wanted you to check my profile, looking for location, and ending up exposed to a product I linked, already primed with sympathy?
Even with GPT-4 you already have to consider that what the prompt says != what effect it will have on the model, and adjust accordingly.