Agent Goal Hijack
Injected instructions hidden in a web page, tool output, or retrieved document quietly redirect an agent away from the task its operator actually gave it.
Beacon Plane C runs a content-safety scan over every tool/MCP response and model input/output, reusing Constellation's shipping prompt-injection layer, so injected instructions are caught before they reach the agent. Tier-3 intent classification and Tier-2 trajectory analysis are the hardening path, staged monitor-first.