we have a few things in place, allowlists and permissions act as a layer. also beginning some work on prompt isolation within api soon. but having an isolated identity + data within a separate agentic inbox also puts less risk of your personal email data being injected - which is most people's main concern
brap|1 month ago
You mean isolating data from instructions? As far as I know this is not a solved problem, or is it?
gpmcadam|1 month ago