2

Defending Against Prompt Injection with Structured Queries (StruQ)