The AI security audit request came from a developer who'd built a customer service chatbot for a small e-commerce business. The chatbot was helpful, well-designed, and had been running for three months without issues. Then a charge of $847 appeared on the company's OpenAI account in a single afternoon — far beyond normal usage. The culprit: the developer had put the OpenAI API key directly in the system prompt so the chatbot could "explain its own capabilities" to users. A…
No comments:
Post a Comment