Hidden instructions smuggled into a tool's description or schema, which the agent reads and may act on before it ever calls the tool.
ToolportToolport scans every tool definition for injection signatures (instruction-override, stealth directives, embedded commands, hidden Unicode) when a server first connects and whenever a definition changes, and flags it in Activity.