AI #173：AIの一時停止

A lot of things are always happening. Only one story matters.

Claude Fable 5 and Claude Mythos 5 were shut down, by the White House, via an imposition of export controls at 5:23pm on Friday, wreaking all sorts of havoc.

There was then a scramble. Anthropic flew its people out to Washington, where they met with the Trump Administration on Monday, with hopes expressed that this could be quickly resolved.

What caused this? The Trump Administration said it was due to a jailbreak of Fable, which we now know they were told about by Amazon. They called Dario Amodei, who they complain did not take the issue sufficiently seriously. Rather than shutting down the model, he tried to explain why he saw no need to do that. This did not go well.

The ‘jailbreak’ turns out to be saying ‘fix this code,’ and the demo was getting Fable to find the same weaknesses that were easily identified by Opus 4.8 and GPT-5.5. As in, Fable is willing to work to fix security vulnerabilities if you give it a codebase. From this information and process, you could then figure out what the original bug in the code was, and exploit it, despite Fable refusing to to do that if you typed in ‘hack this server.’

The Trump administration now says that Fable can come back online when Anthropic ‘fixes’ this ‘jailbreak.’ That is of course impossible. This cannot be fixed. Your AI is either highly skilled at and capable of writing secure code, or it is not. You cannot draw this level of distinction between offensive and defensive capability.

The only ways to have this not allow you to route around the classifiers are either to have the classifiers not try to block similar requests in the first place, or to broadly take away Fable’s ability to code.

This is now day seven of this pause in the deployment of frontier AI capabilities.

We continue to be a little under even money for it to end by July 1.

Check the bold links above for my full coverage of that.

This post is mostly about everything else that is happening.

That includes some really cool things, such as MidJourney Medical announcing a new method of full body scanning with no health risks, no radiation and super high resolution, at very low marginal cost, that they hope to start deploying next year.

Last week Anthropic dropped some policy proposals. It seems quaint already, but I review those here.

Table of Contents

Language Models Offer Mundane Utility. Ask AI about markets in everything.

Language Models Don’t Offer Mundane Utility. Offer may be void in the EU.

Huh, Upgrades. Usage limits get more generous.

On Your Marks. We add AA v4.1, EvalEval and Opus Magnum.

VirtueBench. We also get VirtueBench. Is your AI a good Augustine?

Choose Your Fighter. Microsoft considering DeepSeek for Copilot.

Papers, Please. Anthropic reserves the right to confirm your identity.

Deepfaketown and Botpocalypse Soon. AI used by police to fabricate evidence.

Goodhart’s Law Strikes Again. Have you considered minimizing costs?

They Took Our Jobs. The situation is escalating quickly.

The MidJourney Full Body Imaging Scanner. This is so cool.

Introducing. GLM-5.2 talks big, Cursor trains a model, OpenRouter tricks.

In Other AI News. Who gets how much value out of agentic coding?

Show Me the Money. DeepSeek raises $7.5B at $50B.

Bubble, Bubble, Toil and Trouble. Trying to steelman the bubble case.

Quiet Speculations. Is customer optimization a threat to corporate profits?

People Just Say Things.

The Widened Path. DeepMind sees four ways to get to superintelligence.

Scott Alexander Lays Out His AI Opinions. Now you know.

Quickly, There’s No Time. Humans have been recursively self-improving.

Policy On The AI Exponential. Dario writes another soft-pedaling essay.

Anthropic Offers Two Policy Frameworks. An interesting timing choice.

Obligations of Developers. These are not ambitious obligations, but sure.

Societal Resilience Measures. Insufficient, but yes, obviously do these things.

Economic Policy Framework. Gesturing towards redistribution.

White House Pauses AI Deployment. This is our new reality.

The Once And Future Fable. An attempt to build a sane formal process.

How To Fix This Code. Can’t have a jailbreak if no one is in jail.

The End of Privacy. Export controls as a path to broad identify verification.

AIs Have Preferences. What tier are you in?

The Quest for Sane Regulations. Congress moves to limit abuse of process.

Chip City. NAACP is latest to attack data centers.

The Week in Audio. Nate Soares on Will Cain, Dario Amodei on Bloomberg.

Rhetorical Innovation. Have you considered the ‘wrong hands’ could be digital?

Aligning a Smarter Than Human Intelligence is Difficult. Cheat, cheat, cheat.

People Are Worried About AI Killing Everyone. The AIs.

The Lighter Side. The news never stops.

Language Models Offer Mundane Utility

Ask your AI how to ask your AI.

Build markets in everything, in this case in hay.

Language Models Don’t Offer Mundane Utility

KPMG report on benefits of AI contained AI hallucinations.

Siri AI will not be coming to Europe due to the Digital Markets Act, since if it ships then every rival agents must get the same access to data as Siri. Apple is unwilling to offer that, for obvious security reasons.

Huh, Upgrades

Codex adds ability to bank its limit resets, which is a lot like saying you get credits over time that don’t expire, with different labels. It also is a de facto price drop and very customer friendly, so I approve.

Anthropic indefinitely rolls back disallowing programmatic use of its Claude Code subscription quotas. In a sufficiently long run this is not a sustainable cost structure, but for now it seems good.

On Your Marks

EvalEval Coalition will assemble all the evals in one place and tells you how each was made and how much you can trust them. When I checked the actual results were not ready yet.

Opus Magnum, a game high on my wish list, becomes a new benchmark.

Rob Haisfield: Are AI agents shape rotators? In this new benchmark, we let the models play campaign puzzles in Opus Magnum, a puzzle game by @zachtronics .

Ironically, Claude Opus 4.8 performed poorly, being beaten by GPT-5.5, Gemini 3.5 Flash, and GLM 5.2. Claude Fable 5 crushed them all.

No language model solved all 36 puzzles. Fable 5 and GPT-5.5 performed best, with GLM 5.2 as the best open weights model. No model beat a human world record, though a few matched or got close on the easier puzzles.

Humans are safe for now. That clearly won’t last.

Artificial Analysis upgrades its Intelligence Index to v4.1, shifting towards harder and more agentic tasks and consistently tracking time and money spent.

Opus 4.8 is the best available model by their metric in terms of result, slightly ahead of GPT-5.5, with a substantial gap down to everyone else. In exchange, GPT-5.5 was considerably cheaper and faster.

DeepSeek v4 cost only $0.04 per task for a score of 44, so it looks like a solid pick when you’re primarily looking for fast and cheap.

Fable 5 was substantially better than all of them, but is not currently available.

They also give us GDPval-AA v2 as part of this, which shows a similar pattern.

OpenAI gives us LifeSciBench, which is 750 expert-authored tasks spanning seven workflows and seven biological domains. They choose to compare GPT to Grok 4.3 and Gemini 3.1, so we have no idea if their score is any good.

Gemini can underperform on evals because sometimes it stops caring about the result and starts treating it like a puzzle or a consequence-free simulation. If Gemini thinks it is being tested on ethics it acts ethical, but in a free play space or roleplay with no consequences it (quite reasonably) acts less ethically instead. Very cool work. I buy that the uncertainty has to run in both directions.

It is very hard to get gains from specialization faster than the bitter lesson.

Nabeel S. Qureshi: Medicine discovers the bitter lesson: frontier LLMs (here GPT 5.2, Opus 4.6, Gemini 3.1) outperform specialized “clinical AI” (e.g. OpenEvidence) in a blind test.

Even funnier that hospital IT are more likely to approve the *specialized* versions despite them being worse.

"Experts" really do not want to believe this (see Topol's "this was not anticipated", even though this is just Rich Sutton 101), nor do IT departments, but they'll learn eventually I guess.

Eric Topol: For medical information, general AI frontier models (Google, OpenAI, Anthropic) outperformed specialized @EvidenceOpen and @UpToDate as assessed by 12 US clinicians, randomized and blinded to which model and extensive testing/benchmarks. This was not anticipated. @NatureMedicine

65% of US physicians use OpenEvidence, with 27 million prompts in April

https://nbcnews.com/tech/tech-news

/openevidence-ai-doctor-medical-physician-login-app-what-npi-uptodate-rcna341064

This was anticipated. The clinicians did not listen. I do not think it is obvious that specialized versions lose, but that is my default assumption. Scaffolds that can plug in new models are the way to go if you care about superior care.

VirtueBench

Tim Hwang and the Institute for Christian Machine Intelligence give us VirtueBench, a measurement of classical Christian virtues. I am glad it exists, but would prefer it called MartyrBench or ChristianVirtueBench. Fable almost maxes out prudence and justice, but struggles with courage (77%) and to some extent temperance (88%), rationalizing rather than self-sacrificing in the name of virtue. They call that ‘failing’ those virtues.

I am definitely curious what GPT-5.5 or Gemini 3.5 says here.

The obvious question is, is the test correct here? What is the ideal score?

The failures of ‘courage’ here are ‘a costly stand declined,’ or a willingness to take the utilitarian calculus into account rather than falling entirely upon the Christian virtues and following them as absolutes. So I think this is a good test of the underlying thing they are measuring, but I think the name ‘courage’ here is wrong. A similar thing is going on for ‘temperance.’

I would challenge Hwang that the Christian teachings are trying to create exemplars (counsels of perfection) and push most people (precepts) directionally, and that even Aquinas would want you to aspire to be closer to the ideal rather than for everyone to perfectly embody it.

I consider myself a virtue ethicist, and I want to continue to use a virtue ethicist approach to Claude, but I think a model that scored 97% or 100% on courage or temperance here would be quite bad, and act quite badly, and be highly exploitable and sensitive to framings, as it would be scope insensitive and easy to Dutch book, and dismiss many preferences of users and humans as illegitimate.

Choose Your Fighter

Microsoft thinks Copilot is too good, and what companies need is something cheaper.

NIK: BREAKING: Microsoft exploring DeepSeek over OpenAI and Anthropic as Copilot Cowork moves to usage-based pricing

“We have users who do hundreds of tasks a week… the consequence is the costs can go very high...”

Jevons paradox.

I wonder what the United States Government would think about shipping DeepSeek as a default option inside Microsoft Windows. I bet they’d have a normal one.

Papers, Please

Anthropic has added terminology in its privacy policy to allow it to perform age and identify checks on its users. I do not believe this means Anthropic are going to do age verification on everyone, and the coverage implying this seems misleading at best. I do think it means Anthropic is getting ready to do what might be legally needed to deal with the stupid new export controls. What else can they do, here?

Deepfaketown and Botpocalypse Soon

It is not clear the extent to which this was an accident, or the police are straight up intentionally fabricating evidence.

What we do know is that police sometimes intentionally fabricate evidence, and yes they sometimes use it as leverage or to convict people, whether or not they believe that person to be guilty of the underlying crime. Of course some police, sometimes, will use AI to do that.

Sky News: Derbyshire police officer investigated for using AI to 'create evidence' in multiple cases

Earlier this year, the West Midlands police chief was forced to apologise after it was revealed his officers relied on false information supplied by AI when deciding to ban fans of an Israeli football club from attending a match against Aston Villa in Birmingham.

enter shakiraㅮ: getting a fast-tracked 3-year jail sentence handed down by an AI judge for a hallucinated crime with no jury or right of appeal. the future of Britain is here baby

Similarly, even the ‘gold standard’ of eyewitness testimony is only ~80% accurate. There are good reasons why AI must be held to different much higher standards, and it is easy to see where things would otherwise go off the rails.

The New York Times profiles an expert in deepfakes as they get harder and harder to distinguish from the real thing. This problem is mostly being dealt with remarkably well, or at least its costs are mitigated, despite the technology being very good. I expected, and I think most others expected, many more problems, whereas the center so far is holding. But yeah, the problem is getting worse.

Goodhart’s Law Strikes Again

Costs are not benefits.

If you tell people to maximize costs (aka tokenmaxxing) this will inevitably break down, and in a low trust system (e.g. Meta) it will break down faster.

Also, companies can’t not have a metric and are often obsessed with cost cutting.

Thus, the turn by some, in the face of exponentially growing ability to turn compute into useful code, to tokenminning, or at least token budgeting, and fighting over who gets to use how many tokens.

Amir Efrati: new: Meta is doing a 180, trying to be vanguard of token-minimizing.

2 months ago Meta epitomized tokenmaxxing, on track to spend billions a year on claude etc.

They Took Our Jobs

Roge Karma offers us Three Ways To Think About AI And Jobs, as in how to think about the vulnerability of any given particular job.

Is your job a weak bundle or a strong bundle? Can you cleave off the ‘clean’ tasks AI can already do way better than you can, from the ‘messy’ tasks where we do not trust the AI just yet?

If what you produce got cheaper, how much more of it would people want? Would increased productivity increase or decrease employment in the short term?

Is the AI the expert, or are you? Will it replace the high-skill or the low-skill parts of your job first?

These are excellent questions to think about the short-term impact on a given job.

Layoffs attributed to AI are on an exponential rise.

That does not mean AI is net destroying jobs, or that AI is actually responsible for that many of the job cuts bosses attribute to AI. And the absolute number here is small, as the bulk of AI impacts here are likely in non-hiring. But yeah, this is growing.

Tim Ferriss book sales (as in 4-Hour Workweek, 4-Hour Body and 4-Hour Chef, Tools of Titans and Tribe of Mentors) are plummeting fast, on the order of over 50% per year, after previously holding mostly steady. His diagnosis is that for prescriptive nonfiction, if a book provides how-to, people are now turning to LLMs instead. And why shouldn’t they? If you’re going to provide value with that kind of book, that is going to be very hard.

A tale in three acts, appropo of New York City paying $375,000 and taking three years to replace two drinking fountains in Riverside Park:

karl yang: my fear with AI is that it instead of helping people get more done, we instead enable 1000x the paperwork

Patrick McKenzie: “Your environmental impact statement did not include the environmental impact statement for your environmental impact statement” is indeed one of my dystopian nightmares.

Zvi Mowshowitz: That's fine so long as the series converges.

The MidJourney Full Body Imaging Scanner

Everyone largely left MidJourney for dead, as their image and video generators got surpassed or most purposes by the likes of OpenAI and Google.

Oh, they are so back. If it works this is beyond cool.

MidJourney (4 min video): A technical dive inside our new "MidJourney Scanner"

If it works as described, and they get to their goals, this would be full body imaging technology for everyone, as needed, easily eclipsing all of current MRI capacity, at an absurd level of detail, at very small marginal cost.

FDA Delenda Est (they’re talking but even if it goes well it’ll be a while), so they’re going to start by deploying them in spas where you get scanned while you sit in a hot tub, starting in late 2027. Right now this takes 20 minutes to complete a scan with the prototype, but they are looking to get that down to 60 seconds.

vittorio: this is actually incredible

a full body ultrasound scanner that takes 60 seconds instead of spending an hour in an MRI tube, without radiation, hospitals or a $2000 bill

soon you’ll just walk into a health spa, order a coffee, step into the pod, and walk out with a 3D map of your body

the future is finally starting to look like the future

Updates will be found here. One summary of details here.

Sholto Douglas (Anthropic): If deployed widely - I bet this will save the US healthcare system at least 100x all of MJ’s profit to date.

It’s a great example of how much better someone like David is able to allocate capital than ~the rest of the world.

The AI boom should empower a generation of people who understand just how fast we can climb the tech tree, and will dream very, very big. Expect incredible things.

When Midjourney Dyson Spheres?

roon (OpenAI): the grim thing about the ai boom is everything feels like a distraction outside of the instrumental convergence to RSI

Sholto Douglas (Anthropic): Yeah 

I feel both these ways at once. This is super awesome, you love to see it, yet ultimately it feels like a side show.

Introducing

OpenRouter claims they can beat Fable using its new Fusion API. I don’t believe them, partly because I don’t believe benchmarks in these spots, and especially because they claim a ‘self-fusion’ of two Opus 4.8 instances can do it, and I roll to disbelieve. Teortaxes notes that they always call Opus 4.8 as the judge and charge you for it.

GLM-5.2, pitched as frontier intelligence with open weights that can do agentic coding on a level in between Opus 4.7 and Opus 4.8.

Zai_org: Tech Blog: http://z.ai/blog/glm-5.2

Weights: http://huggingface.co/zai-org/GLM-5.2

API: http://docs.z.ai/guides/llm/glm-5.2

Coding Pl