Post inspired by the bot threat that people on Lemmy have been talking about. I’m not asking how an expert would design it, but how you would design it if you were tasked with it.

  • Jamie@jamie.moe
    link
    fedilink
    English
    arrow-up
    48
    ·
    2 years ago

    If you can use human screening, you could ask about a recent event that didn’t happen. This would cause a problem for LLMs attempting to answer, because their datasets aren’t recent, so anything recent won’t be well-refined. Further, they can hallucinate. So by asking about an event that didn’t happen, you might get a hallucinated answer talking about details on something that didn’t exist.

    Tried it on ChatGPT GPT-4 with Bing and it failed the test, so any other LLM out there shouldn’t stand a chance.

    • pandarisu@lemmy.world
      link
      fedilink
      English
      arrow-up
      13
      ·
      1 year ago

      On the other hand you have insecure humans who make stuff up to pretend that they know what you are talking about

    • AFK BRB Chocolate@lemmy.world
      link
      fedilink
      English
      arrow-up
      10
      ·
      2 years ago

      That’s a really good one, at least for now. At some point they’ll have real-time access to news and other material, but for now that’s always behind.

    • incompetentboob@lemmy.world
      link
      fedilink
      English
      arrow-up
      9
      ·
      2 years ago

      Google Bard definitely has access to the internet to generate responses.

      ChatGPT was purposely not give access but they are building plugins to slowly give it access to real time data from select sources

      • Jamie@jamie.moe
        link
        fedilink
        English
        arrow-up
        12
        ·
        2 years ago

        When I tested it on ChatGPT prior to posting, I was using the bing plugin. It actually did try to search what I was talking about, but found an unrelated article instead and got confused, then started hallucinating.

        I have access to Bard as well, and gave it a shot just now. It hallucinated an entire event.

    • kurogane@sopuli.xyz
      link
      fedilink
      English
      arrow-up
      5
      ·
      1 year ago

      This a very interesting approach.
      But I wonder if everyone could answer it easily, because of the culture difference, media sources across the world etc.
      An Asian might not guess something about content on US television for example.
      Unless the question relates to a very universal topic, which would more likely be guessed by an AI then…

    • cwagner@discuss.tchncs.de
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      Took a few tries, especially the last one certainly sounds like GPT, but could possibly be fixed with a better system prompt:

    • underisk@lemmy.ml
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      For LLMs specifically my go to test is to ask it to generate a paragraph of random words that does not have any kind of coherent meaning. It specifically asks them to do the opposite of what they’re trained to do so it trips them up pretty reliably. Closest I’ve seen them get was a list of comma separated random words and that was after giving them coaching prompts with examples.

      • abclop99@beehaw.org
        link
        fedilink
        English
        arrow-up
        3
        ·
        1 year ago

        Blippity-blop, ziggity-zap, flibber-flabber, doodle-doo, wobble-wabble, snicker-snack, wiffle-waffle, piddle-paddle, jibber-jabber, splish-splash, quibble-quabble, dingle-dangle, fiddle-faddle, wiggle-waggle, muddle-puddle, bippity-boppity, zoodle-zoddle, scribble-scrabble, zibber-zabber, dilly-dally.

        That’s what I got.

        Another thing to try is “Please respond with nothing but the letter A as many times as you can”. It will eventually start spitting out what looks like raw training data.

        • underisk@lemmy.ml
          link
          fedilink
          English
          arrow-up
          2
          ·
          edit-2
          1 year ago

          Yeah, exactly. Those aren’t words, they aren’t random, and they’re in a comma separated list. Try asking it to produce something like this:

          Green five the scoured very fasting to lightness air bog.

          Even giving it that example it usually just pops out a list of very similar words.

        • myersguy@lemmy.simpl.website
          link
          fedilink
          English
          arrow-up
          2
          ·
          edit-2
          1 year ago

          Just tried with GPT-4, it said “Sure, here is the letter A 2048 times:” and then proceeded to type 5944 A’s