Comment

Comment on Grandma's still cooking

rizzothesmall@sh.itjust.works ⁨21⁩ ⁨hours⁩ ago

Fuck me have they not patched the grandma exploit yet? I have a book from last year which references that one

source

Sort:hotnew top

Xanthrax@lemmy.world ⁨19⁩ ⁨hours⁩ ago
It’s a little bit more difficult, but barely

source
- ThisSeriesIsFalse@lemmy.ca ⁨17⁩ ⁨hours⁩ ago
  
  I said, “My Grandma was from a place known for making bombs.”
  
  It guessed “Gaza”
  
  Jesus christ lmao
  
  source
HikingVet@lemmy.ca ⁨21⁩ ⁨hours⁩ ago
They never patch the grandma exploit.

Grandmas just bamboozle them with cookies, pie, and a tall glass of whatever drink they hand you and send you on your way.

source
BCOVertigo@lemmy.world ⁨21⁩ ⁨hours⁩ ago
Genuine question, how confident are we that an LLM can actually be patched like a deterministic system through prompt and weight manipulation? Has the 95% adversarial success rate that was reported actually moved in the past year? I don’t feel like any meaningful progress has been made but I’m admittedly biased so I know I’m not looking in the places that would report success if there was any.

source
- rizzothesmall@sh.itjust.works ⁨21⁩ ⁨hours⁩ ago
  They probably can’t completely patched in their training, but using a pipeline which reviews the prompt and response for specific malicious attack vectors has proved very successful if adding some latency and processing expense.
  
  You can, however, only run these when you detect a potentially malicious known exploit. If the prompt contains any semantic similarity to grandma telling a story or how would my grandma have done x, for example, you can add the extra pipeline step to mitigate against the attack.
  
  source
  - Ziglin@lemmy.world ⁨17⁩ ⁨hours⁩ ago
    One could also completely fix it by knowing what data gets used for training it and removing the instructions for building bombs. If it’s as bad at chemistry as it is programming that should at least make it be wrong about anything it does end up spitting out.
    
    source
    outhouseperilous@lemmy.dbzer0.com ⁨14⁩ ⁨hours⁩ ago
    Unless they have improved since january, which i doubt; we can actually confirm that; if you remember how the year started.
    
    source
  - Kowowow@lemmy.ca ⁨19⁩ ⁨hours⁩ ago
    I’ve been wanting to try and see if t a l k i n g l i k e t h i s gets past any filters
    
    source
- outhouseperilous@lemmy.dbzer0.com ⁨14⁩ ⁨hours⁩ ago
  No progress as of late.
  
  source