Your PII redactor probably leaks tool-call arguments
研究发现多数PII编辑工具在处理工具调用参数时存在泄露风险,利用458项多语言数据集验证了跨场景漏洞。
Most "redact PII before the LLM" tools scan the chat message text and stop there. That was fine when an LLM call was one string in, one string out. It…