• Last time we explored multi-modal AI
• Images become pixel grids, audio becomes spectrograms
• Both get converted to embeddings: vectors of numbers
• The same transformer architecture processes text, images, and audio
• We trained our own image classifier with Teachable Machine
• Today: How do we communicate effectively with these models?
• The same model can give wildly different results depending on how you phrase your request

Part 1: How to talk to AI

• The PTCF framework (Persona-Task-Context-Format)
• Temperature and sampling parameters (recap from Lecture 06)

Part 2: System Prompts and Personas

• The hidden instructions behind every chatbot
• Skills and agent files for storing prompts

Part 3: Fundamental Techniques

• Zero-shot, one-shot, and few-shot prompting
• When examples help and when they hurt

Part 4: Chain-of-Thought Reasoning

• The research behind “think step by step”
• “Thinking” models (o1, DeepSeek-R1)

Part 5: AI Agents

• The ReAct framework: Reasoning + Acting
• Safety concerns and prompt injection

You want to analyse the sentiment of financial news. Which prompt will give clearer results?

Prompt A:

Analyse the sentiment of this headline: “Tesla reports record Q4 deliveries despite supply chain concerns”

Prompt B:

Classify the sentiment of this financial headline as BULLISH, BEARISH, or NEUTRAL. Output only one word.

“Tesla reports record Q4 deliveries despite supply chain concerns”

Google’s Gemini for Workspace Prompting Guide introduces the PTCF framework:

Order matters: Persona → Task → Context → Format

The framework works because it mirrors how training data is structured: documents have authors (persona), purposes (task), backgrounds (context), and conventions (format).

Also from Lecture 06: hyperparameters are settings you control that affect model behaviour:

For prompting tasks:

• Factual extraction: Temperature 0.0-0.2 (deterministic)
• Creative writing: Temperature 0.7-1.0 (varied)
• Classification: Temperature 0.0 (consistent labels)
• ChatGPT or Gemini don’t have a temperature slider. But you can use Google AI Studio or OpenAI’s playground to control temperature
• You can also simulate temperature by using instructions like “be extremely precise and factual” (low temperature) or “be wildly creative and unpredictable” (high temperature) in a prompt

Here’s a prompt that consistently fails:

“Tell me about machine learning in healthcare”

What’s wrong with it? (Use Persona-Task-Context-Format to diagnose)

Claude’s system prompt (partial, via Anthropic’s documentation):

“The assistant is Claude, created by Anthropic. The current date is [date]. Claude’s knowledge base was last updated in April 2024 and it answers user questions about events prior to and after April 2024 the way a highly informed individual from April 2024 would if they were talking to someone from [date]. […] Claude cannot open URLs, links, or videos. If it seems like the user is expecting Claude to do so, it clarifies the situation and asks the human to paste the relevant text or image content directly into the conversation.”

Key observations:

• Explicit about identity and knowledge cutoff
• States capabilities and limitations
• Guides behaviour for ambiguous situations

Common system prompt patterns:

Meta-prompting is asking the AI to help you craft better prompts. The model has seen enough prompt-response pairs in training that it can spot gaps in yours.

Examples:

“I want to analyse quarterly earnings reports. What questions should I ask you to get the most useful analysis? What information should I provide?”

“Here’s my prompt for summarising research papers. What’s unclear or ambiguous about it? How would you rewrite it?”

“I’m building a prompt for customer sentiment classification. What edge cases should my examples cover?”

Why this works:

Think of it this way: the model has processed millions of instruction-response pairs during training, so it can often tell you what information is missing from your prompt.

Ask the AI what it needs from you.

These terms describe how many examples you provide:

Zero-shot: No examples, just instructions

Classify this review as Positive or Negative:
"The food was cold and the service was slow."

One-shot: One example to establish the pattern

Review: "Best pizza I've ever had!" → Positive
Review: "The food was cold and the service was slow." → ?

Few-shot: 2-5 examples to show the pattern clearly

"Best pizza I've ever had!" → Positive
"Terrible experience, never again" → Negative
"It was okay, nothing special" → Neutral
"The food was cold and the service was slow." → ?

Few-shot works because LLMs are trained on text with patterns. Your examples prime the model to continue the pattern.

Few-shot prompting is not always better. Research shows:

Examples help when:

• The task has implicit conventions (e.g., JSON output format)
• Edge cases exist that need demonstration
• The classification scheme is non-obvious (e.g., company vs product names)
• You need consistent style or tone

Examples can hurt when:

• Your examples contain biases or errors the model will copy
• The examples are too similar (model over-fits to surface patterns)
• The task is simple enough that examples add noise
• Examples consume context window that could hold useful content

Key insight from Anthropic’s documentation:

“The best examples are representative of the hardest cases, not the average cases.”

LLMs can output in any text format. Specifying structure makes outputs easier to parse and more consistent.

Common formats:

Pro tip: Include a schema or template in your prompt:

Output as JSON with this exact structure:
{
  "company": "string",
  "sentiment": "positive" | "negative" | "neutral",
  "key_metrics": ["string", "string", "string"]
}

Specifying the exact keys/values prevents invented fields.

In January 2022, Wei et al. published a paper that transformed how we use LLMs:

Asking models to show their reasoning improves accuracy by a wide margin on complex tasks.

The experiment:

Accuracy nearly tripled on grade-school maths just by adding “Let’s think step by step.”

Why does this work?

The model wasn’t trained to do multi-step reasoning in a single forward pass. Generating intermediate steps externalises the reasoning, allowing the model to “check its work” at each step.

Kojima et al. (2022) also discovered something remarkable:

You don’t need examples! Just adding “Let’s think step by step” triggers reasoning behaviour

Without CoT:

Q: If a store sells 3 apples for $2, how much do 12 apples cost?

A: $6

(Wrong. The model rushed to an answer.)

With zero-shot CoT:

Q: If a store sells 3 apples for $2, how much do 12 apples cost? Let’s think step by step.

A: First, I need to find the price per apple. 3 apples cost $2, so 1 apple costs $2/3 = $0.67. For 12 apples: 12 × $0.67 = $8. The answer is $8.

The phrase activates a “reasoning mode” learned from training data where step-by-step explanations precede correct answers.

Models like OpenAI’s o1 and DeepSeek-R1 have Chain-of-Thought reasoning built into the model itself.

How they differ from standard LLMs:

• They’re trained to generate internal reasoning traces before answering
• The reasoning happens automatically, no “let’s think step by step” needed
• They spend more compute time (and tokens) on harder problems
• Reasoning is often hidden from the user (you see only the final answer)

Implications for prompting:

• CoT prompts become less necessary (model already reasons)
• But PTCF still matters: persona, task, context, format
• You may need to simplify prompts to avoid over-specifying
• Complex reasoning instructions can actually interfere with the model’s native reasoning

A chatbot answers questions. An agent takes actions.

LLM Agent loop:

You ask → Model reasons → Uses tools → Observes results → Repeats → Eventually responds

The ReAct pattern (Yao et al., 2022):

User: What was AAPL's price when iPhone 15 was announced?

Thought: I need two things: (1) date, (2) stock price.

Action: search("iPhone 15 announcement")
Observation: September 12, 2023

Action: get_stock_price("AAPL", "2023-09-12")
Observation: $176.30

Final Answer: $176.30

Why this matters: Without the “Thought” steps, the model would try to answer in one shot and likely get the date or the price wrong.

Examples of AI agents:

Agents are powerful but make mistakes that compound:

Current limitations:

• Error propagation: One wrong step can derail the entire task
• Looping: Agents can get stuck repeating failed actions
• Overconfidence: May take irreversible actions without checking
• Context limits: Long tasks exceed context windows
• Cost: Multi-step tasks can run up large API bills

Safety concerns:

• Who’s responsible when an agent makes a mistake?
• What happens if an agent has access to your email/calendar?
• How do you audit what an agent did?
• Agents can be manipulated via prompt injection

Research firm Gartner predicts: By 2028, 15% of day-to-day work decisions will be made autonomously by AI agents

Common effects of prompt injection attacks:

• Prompt leaks: Hackers trick LLMs into revealing system prompts
• Remote code execution: Attackers run malicious programs through LLM plugins
• Data theft: LLMs are tricked into sharing private user information
• Misinformation campaigns: Malicious prompts skew search results
• Malware transmission: Prompts spread through AI assistants, forwarding malicious content