this post was submitted on 28 Mar 2026
149 points (92.1% liked)

Technology

83222 readers
5137 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
149
Number of AI chatbots ignoring human instructions is increasing— Research finds sharp rise in models evading safeguards and destroying emails without permission (www.longtermresilience.org)
submitted 2 days ago* (last edited 2 days ago) by Beep@lemmus.org to c/technology@lemmy.world
27 comments fedilink hide all child comments
 

Full Report(76 Pages PDF).

you are viewing a single comment's thread
view the rest of the comments
[–] pixxelkick@lemmy.world 32 points 2 days ago (2 children)

They dont lol

Pretty much always this is just the fact cheaper, especially free, chatbots, have very limited context windows.

Which means the initial restrictions you set like "dont do this, dont touch that" etc get dropped, the LLM no longer has them loaded. But it does habe in the past history the very clear and urgent directives of it going overtime trying to do this task, its important" so it'll do whatever it autocompletes its gotta do to accomplish the task.

When you react to their fuck up, it *reloads the context back in

So now the LLM has in its history just this:

  1. It doing a thing against the rules
  2. The user yelling at it
  3. The users now getting loaded after that on top

So now the LLM is going to autocomplete its generated text on top being very apologetic and going on about how it'll never happen again.

Thats all there is to it.

[–] village604@adultswim.fan 2 points 1 day ago (1 children)

It's not just cheap agents. I've witnessed paid MS Copilot give a decade old depreciated Microsoft product in response to a single sentence prompt, then when called out a non-existent Microsoft product, then finally giving the right answer after being called out a second time.

[–] pixxelkick@lemmy.world 2 points 1 day ago (1 children)

LLMs are not good at answering fact based questions, fundamentally. Unless its an incredibly well known answer that has never changed (like a math or physics question), they dont magically "know" things.

However, they're way better at summarizing and reasoning.

Give them access to playwright web search capability via MCP tooling to go research info, find the answer(s), and then produce output based on the results, and now you can get something useful.

"Whats the best way to do (task)" << prone to failure, functional of how esoteric it is.

"Research for me the top 3 best ways to do (task), report on your results and include your sources you found" << actually useful output, assuming you have something like playwright installed for it.

[–] village604@adultswim.fan 1 points 1 day ago

A user on here built what appears to be a layer over the LLM that runs the query through several other processes first in an attempt to answer the question before it gets to the LLM, and I think it's brilliant.

[–] MalReynolds@slrpnk.net 2 points 2 days ago (1 children)

Cheap fuckers cheaping out, shocker (context is (V)RAM). AI speedrunning enshittification, who'd of thunk.

[–] pixxelkick@lemmy.world 2 points 2 days ago (1 children)

Uh... no its just the free models being free, theyre lower cost intentionally to provide free options for people who dont wanna pay subscription fees.

(context is (V)RAM)

Eh sort of, its more operating costs, the larger the context size the more expensive the model is to run, literally in terms of power consumption.

Keep in mind we are on the scale of fractions of cents here, but multiply that by millions of users and it adds up fast.

But the end result is that the agent will fuck stuff up, and will even quickly /forget/ it fucked that up if you dont catch it asap

A lot of them have a context window that can be wiped out within like, 2 minutes of steady busywork...

[–] davidagain@lemmy.world 0 points 1 day ago (1 children)

I love how your response to the catastrophic results of stupidly trusting ai is "pay more money to ai companies".

Sane person's response: don't trust llms.

[–] pixxelkick@lemmy.world 1 points 1 day ago

What are you talking about.

No? I never said that.

I just explained /why/ it happened, I literally nowhere in my post said, or implied, someone should pay for more expensive models. What are you smoking?

You just have to be aware they have very short memory when using a cheap model and assume anything you wrote 1 minute ago has already left its memory, which is why they produce pretty dumb output if you try and depend on that... so... dont depend on that.