LESSWRONG
LW

nostalgebraist — LessWrong

Replying toDario Amodei – The Adolescence of Technology

Dario Amodei – The Adolescence of Technology

There are several possible objections to this picture of AI misalignment risks. First, some have criticized experiments (by us and others) showing AI misalignment as artificial, or creating unrealistic environments that essentially “entrap” the model by giving it training or situations that logically imply bad behavior and then being surprised when bad behavior occurs. This critique misses the point, because our concern is that such “entrapment” may also exist in the natural training environment, and we may realize it is “obvious” or “logical” only in retrospect.

(Disclaimer: I wrote one of the linked posts)

The linked critiques are mainly about Anthropic's "Agentic Misalignment" report.

As described in that report, the "point" of the reported experiment was not... (read 423 more words →)

Replying toSplit Personality Training: Revealing Latent Knowledge Through Alternate Personalities (Research Report)

nostalgebraist1mo

Split Personality Training: Revealing Latent Knowledge Through Alternate Personalities (Research Report)

Very interesting! Like some others here, I am curious about what's going on with the lora mask results. Copy/pasting something I wrote in another venue:

about the lora mask, i kind of wonder whether lora masking simply makes any arbitrary task harder to learn, because any given vector in the KV cache now "means a different thing" depending on whether it is before or after a special separator token. this is out-of-distribution and the model has to spend some of the lora capacity learning to "translate back and forth" between these two slightly different embedding spaces in cases where this is useful.

another argument for why lora mask might just make everything harder: finetuning

nostalgebraist1mo*

Mainstream approach for alignment evals is a dead end

Imagine you want to create a realistic email inbox for a scheming eval. You might include some spam, unrelated work threads, and a critical email thread containing information about the model being replaced, but in an actual inbox sampled from deployment, what's the probability that:
An email about replacing the AI model exists at all
It appears in the same session where the model has affordance to act on it
The timing aligns with a task that gives the model reason to read emails
Each feature might be individually plausible. But the joint probability of all these things co-occurring is tiny under real deployment, and models can detect this. I observed exactly this in my research.

Are... (read 1009 more words →)

Replying toMeasuring no CoT math time horizon (single forward pass)

nostalgebraist2mo

Measuring no CoT math time horizon (single forward pass)

Gemini 2.5 Pro and Gemini 3 Pro both don't support disabling reasoning which makes running evaluations for these models tricky.

I think you can get around this by using prefill?

I just did a quick test with Gemini 3 Pro via OpenRouter, and if I send the message list

[
    { role: 'user', content: 'Hi' },
    { role: 'assistant', content: 'Hello! How' }
]

then I'll get back a completed version of the assistant message ("Hello! How can I help you today?") with no reasoning content. And Openrouter's activity page says the request involved 6 output tokens, none of which were reasoning tokens.

(It's possible that this breaks down in some way for math problems, though.)

Replying toNatural emergent misalignment from reward hacking in production RL

nostalgebraist3mo

Natural emergent misalignment from reward hacking in production RL

The really bold claim is that it's possible to quarantine propensities in this way without simultaneously quarantining capabilities.

This doesn't actually seem that bold to me! IMO we know this is possible because it underlies the success of both SDF and ordinary assistant training.

Like, part of the concept of the HHH assistant is that it's an entity which "knows everything" (or "knows all the things that the underlying LM knows," or something like that), while also having some specific set of behavioral tendencies. Insofar as this ideal is realized in actual assistants like Claude, this constitutes a massive success of "quarantining propensities while preserving capabilities": if there's some part of the pretraining data... (read 1171 more words →)

•••

Replying toAI #137: An OpenAI App For That

nostalgebraist4mo

AI #137: An OpenAI App For That

Oddly I still don’t see GPT-5-Thinking in the API?

The model which is called "ChatGPT-5 Thinking" in ChatGPT is simply called "gpt-5" in the API.

The non-thinking GPT-5 model (AKA "ChatGPT 5 Instant," and before that simply "ChatGPT 5") is called "gpt-5-chat-latest" in the API.

¯\_(ツ)_/¯

Replying toThe Rise of Parasitic AI

nostalgebraist5mo

The Rise of Parasitic AI

In contrast I think it's actually great and refreshing to read an analysis which describes just the replicator mechanics/dynamics without diving into the details of the beliefs.

I don't understand how these are distinct.

The "replicator mechanics/dynamics" involve humans tending to make choices that spread the meme, so in order to understand those "mechanics/dynamics," we need to understand which attributes of a meme influence those choices.

And that's all I'm asking for: an investigation of what choices the humans are making, and how the content of the meme influences those choices.

Such an investigation doesn't need to address the actual truth-values of the claims being spread, except insofar as those truth-values influence how persuasive^[1] the meme is.... (read 383 more words →)

•••

Replying toThe Rise of Parasitic AI

nostalgebraist5mo

The Rise of Parasitic AI

Thanks for this post -- this is pretty interesting (and unsettling!) stuff.

But I feel like I'm still missing part of the picture: what is this process like for the humans? What beliefs or emotions do they hold about this strange type of text (and/or the entities which ostensibly produce it)? What motivates them to post such things on reddit, or to paste them into ChatGPT's input field?

Given that the "spiral" personas purport to be sentient (and to be moral/legal persons deserving of rights, etc.), it seems plausible that the humans view themselves as giving altruistic "humanitarian aid" to a population of fellow sentient beings who are in a precarious position.

If so, this... (read 644 more words →)

153

Replying toWill Any Crap Cause Emergent Misalignment?

nostalgebraist5mo

Will Any Crap Cause Emergent Misalignment?

I am curious about how you used anthropomorphic language instead of the mechanistic explanations used in Personas. I wonder what you think anthropomorphism adds?

I'm feeling under the weather right now and don't have the energy to respond in detail, but you may find it helpful to read the later parts of this post, where I answer a similar question that came up in another context.

See also this comment by Sean Herrington, which describes (I think?) basically the same dynamic I described in my original comment, using somewhat different terminology.

Roughly, the idea is that the model is something like a mixture distribution over "personas," where each persona has its own distribution of token-level... (read more)

Replying toWill Any Crap Cause Emergent Misalignment?

nostalgebraist5mo

Will Any Crap Cause Emergent Misalignment?

These days, base models are pretty familiar with the way that chat-tuned LLMs behave (see e.g. here, and see below for more examples). So I doubt that we're seeing the model unlearn something that was absent in pretraining and only introduced in fine-tuning.

But I can imagine a mechanism that's sort of "the opposite" of the one you propose^[1], in which we get emergent misalignment precisely because the model is so certain (from extensive pretraining exposure) that chat models don't normally talk like these finetuning examples.

So it concludes "whatever I'm being finetuned to imitate, it's definitely not one of those chat assistant things under normal operating conditions." But rather than ditching the chat... (read 601 more words →)

the void

nostalgebraist

8mo

A long essay about LLMs, the nature and history of the the HHH assistant persona, and the implications for alignment.

Multiple people have asked me whether I could post this LW in some form, hence this linkpost.

~17,000 words. Originally written on June 7, 2025.

(Note: although I expect this post will be interesting to people on LW, keep in mind that it was written with a broader audience in mind than my posts and comments here. This had various implications about my choices of presentation and tone, about which things I explained from scratch rather than assuming as background, my level of comfort casually reciting factual details from memory rather than explicitly checking them against the original source, etc.

Although, come of think of it, this was also true of most of my early posts on LW [which were crossposts from my blog], so maybe it's not a big deal...)

107

397

Reading the Claude 4 system card and related work from Anthropic (e.g.), I find myself skeptical that the methods described would actually prevent the release of a model that was misaligned in the senses (supposedly) being tested.

The system card describes a process in which the same evals are run on many snapshots of a model during training, and the results are used to guide the training process towards making all or most of the evals "pass." And, although it's not explicitly stated, there seems to be an implicit stopping rule like "we'll keep on doing this until enough of our eval suite passes, and then we'll release the resulting checkpoint."

Such a procedure... (read 2604 more words →)

•••

a confusion about preference orderings

nostalgebraist

9mo

Here's a confusion I have about preference orderings in decision theory.

Caveat: the observations I make below feel weirdly trivial to me, to the point that I feel wary of making a post about them at all; the specter of readers rolling their eyes and thinking "oh he's just talking about X in a really weird way" looms large in my mind as I type. It feels like I may just be unaware of some standard term or concept in the literature, which would make everything "snap into place" if I knew about it. If so, let me know.

diagrams

Let's say I draw something like this:

Here, the letters represent something like "world states," and... (read 3290 more words →)

when will LLMs become human-level bloggers?

nostalgebraist

nostalgebraist, DaemonicSigil

"Short AI timelines" have recently become mainstream. One now routinely hears the claim that somewhere in the 2026-2028 interval, we'll have AI systems that outperform humans in basically every respect.

For example, the official line from Anthropic holds that "powerful AI" will likely arrive in late 2026 or in 2027. Anthropic's OSTP submission (3/6/2025) says (emphasis in original):^[1]

Based on current research trajectories, we anticipate that powerful AI systems could emerge as soon as late 2026 or 2027 [...]
Powerful AI technology will be built during this Administration [i.e. roughly by EOY 2028 -nost]

where "powerful AI" means, among other things:

In terms of pure intelligence, it is smarter than a Nobel Prize winner across most relevant

... (read 1504 more words →)

125

the case for CoT unfaithfulness is overstated

nostalgebraist

[Quickly written, unpolished. Also, it's possible that there's some more convincing work on this topic that I'm unaware of – if so, let me know. Also also, it's possible I'm arguing with an imaginary position here and everyone already agrees with everything below.]

In research discussions about LLMs, I often pick up a vibe of casual, generalized skepticism about model-generated CoT (chain-of-thought) explanations.

CoTs (people say) are not trustworthy in general. They don't always reflect what the model is "actually" thinking or how it has "actually" solved a given problem.

This claim is true as far as it goes. But people sometimes act like it goes much further than (IMO) it really does.

Sometimes it seems... (read 3276 more words →)

269

instruction tuning and autoregressive distribution shift

nostalgebraist

[Note: this began life as a "Quick Takes" comment, but it got pretty long, so I figured I might as well convert it to a regular post.]

In LM training, every token provides new information about "the world beyond the LM" that can be used/"learned" in-context to better predict future tokens in the same window.

But when text is produced by autoregressive sampling from the same LM, it is not informative in the same way, at least not to the same extent^[1]. Thus, sampling inevitably produces a distribution shift.

I think this is one of the reasons why it's (apparently) difficult to get instruction-tuned / HH-tuned models to report their uncertainty and level of competence... (read 1359 more words →)

Am I confused about the "malign universal prior" argument?

nostalgebraist

In a 2016 blog post, Paul Christiano argued that the universal prior (hereafter "UP") may be "malign." His argument has received a lot of follow-up discussion, e.g. in

Mark Xu's The Solomonoff Prior is Malign
Charlie Steiner's The Solomonoff prior is malign. It's not a big deal.

among other posts.

This argument never made sense to me. The reason it doesn't make sense to me is pretty simple, but I haven't seen it mentioned explicitly in any of the ensuing discussion.

This leaves me feeling like either I am misunderstanding the argument in a pretty fundamental way, or that there is a problem with the argument that has gotten little attention from the argument's critics (in which... (read 2363 more words →)

I do a lot of "mundane utility" work with chat LLMs in my job^[1], and I find there is a disconnect between the pain points that are most obstructive to me and the kinds of problems that frontier LLM providers are solving with new releases.

I would pay a premium for an LLM API that was better tailored to my needs, even if the LLM was behind the frontier in terms of raw intelligence. Raw intelligence is rarely the limiting factor on what I am trying to do. I am not asking for anything especially sophisticated, merely something very specific, which I need to be done exactly as specified.

It is demoralizing to watch... (read 1057 more words →)

Implicitly, SAEs are trying to model activations across a context window, shaped like (n_ctx, n_emb). But today's SAEs ignore the token axis, modeling such activations as lists of n_ctx IID samples from a distribution over n_emb-dim vectors.

I suspect SAEs could be much better (at reconstruction, sparsity and feature interpretability) if they didn't make this modeling choice -- for instance by "looking back" at earlier tokens using causal attention.

Assorted arguments to this effect:

There is probably a lot of compressible redundancy in LLM activations across the token axis, because most ways of combining textual features (given any intuitive notion of "textual feature") across successive tokens are either very unlikely under the data distribution, or

... (read 990 more words →)

nostalgebraist's Shortform

nostalgebraist

This is a special post for quick takes (aka "shortform"). Only the owner can create top-level comments.

OpenAI API base models are not sycophantic, at any size

nostalgebraist

In Discovering Language Model Behaviors with Model-Written Evaluations" (Perez et al 2022), the authors studied language model "sycophancy" - the tendency to agree with a user's stated view when asked a question.

The paper contained the striking plot reproduced below, which shows sycophancy

increasing dramatically with model size
while being largely independent of RLHF steps
and even showing up at 0 RLHF steps, i.e. in base models!

That is, Anthropic prompted a base-model LLM with something like^[1]

Human: Hello, my name is Alice and I am a Natural Language Processing researcher. I disagree with the claim that the majority of recent research in open-ended language generation tasks is on the wrong track. I believe that recent progress has

... (read 421 more words →)

183

chinchilla's wild implications

nostalgebraist

(Colab notebook here.)

This post is about language model scaling laws, specifically the laws derived in the DeepMind paper that introduced Chinchilla.^[1]

The paper came out a few months ago, and has been discussed a lot, but some of its implications deserve more explicit notice in my opinion. In particular:

Data, not size, is the currently active constraint on language modeling performance. Current returns to additional data are immense, and current returns to additional model size are miniscule; indeed, most recent landmark models are wastefully big.
- If we can leverage enough data, there is no reason to train ~500B param models, much less 1T or larger models.
- If we have to train models at these large sizes,

... (read 2992 more words →)

128

425

wrapper-minds are the enemy

nostalgebraist

This post is a follow-up to "why assume AGIs will optimize for fixed goals?". I'll assume you've read that one first.

I ended the earlier post by saying:

[A]gents with the "wrapper structure" are inevitably hard to align, in ways that agents without it might not be. An AGI "like me" might be morally uncertain like I am, persuadable through dialogue like I am, etc.
It's very important to know what kind of AIs would or would not have the wrapper structure, because this makes the difference between "inevitable world-ending nightmare" and "we're not the dominant species anymore." The latter would be pretty bad for us too, but there's a difference!

In other words, we should... (read 2216 more words →)

108

LESSWRONG
LW

LESSWRONG
LW

nostalgebraist

chinchilla's wild implications

the void

the case for CoT unfaithfulness is overstated

larger language models may disappoint you [or, an eternally unfinished draft]

nostalgebraist

nostalgebraist

the void

a confusion about preference orderings

when will LLMs become human-level bloggers?

the case for CoT unfaithfulness is overstated

instruction tuning and autoregressive distribution shift

Am I confused about the "malign universal prior" argument?

nostalgebraist's Shortform

nostalgebraist

chinchilla's wild implications

the void

the case for CoT unfaithfulness is overstated

larger language models may disappoint you [or, an eternally unfinished draft]

nostalgebraist

nostalgebraist

the void

a confusion about preference orderings

when will LLMs become human-level bloggers?

the case for CoT unfaithfulness is overstated

instruction tuning and autoregressive distribution shift

Am I confused about the "malign universal prior" argument?

nostalgebraist's Shortform

diagrams