A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.
Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.
Subcommunities on Beehaw:
This community’s icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.
It’s risky but the risk is towards the users, and the profits are towards the companies.
Discourse analysis tip: what is not said is sometimes more important than what is said. The fact that they refused to reply hints that the reply would be against their best interests, either lying in a liable way or saying the truth and potentially ruining their investment.
The reason why Google actually answered it (“Google confirmed it [prompt injection] is not a solved problem[…]”) is likely related to saying “it’s an experiment” -
Can we [people in general] stop pretending that those models “learn”? Giving it feedback is like telling my cat “don’t scratch it!” - it might work for that specific case, but it won’t solve the underlying issue, so the model/cat will keep hallucinating/scratching something else. The hallucinations are not individual flaws, they’re issues surfacing from the underlying tech: language associates morphemes (tokens) with meaning, not just a token with another! Linguists have been talking about this for at least a century, but those “tech bros” are still trying to model language without it. (Microsoft is apparently doing some progress in this regard though. I can look for the quote if anyone wants.)
I agree with your point overall in terms of AI not actually learning (I’d describe it as optimizing).
However, I will say that inferring from what is not said is a tricky one to apply generally, which you do in your reply by jumping to conclusions as follows:
This is dangerous, can be used disingenuously and I discourage using it in our discourse.
I do agree with you that it’s tricky to apply, but it’s still useful regardless; and while the danger that you’re talking about is real, it has more to do with the certainty assigned to the inference than with the inference itself.
That’s why I said it “hints that the reply…” instead of “means”, or that the reason that Google answered is “likely related” - both words are there for a good reason, to highlight that this is not a conclusion. As in: it might be wrong, and both words acknowledge it.
Even not being solid info but just an inference, I still felt worth sharing for two reasons, that make the lack of reply noteworthy:
New technology brings new risks. Sell stuff via the internet? Are you crazy?
I assume they simply expect that the risks can be addressed.l. and generally I tend to agree with them. We somehow managed the fact that Google search results are not 100% accurate or Wikipedia articles can be hijacked.
This is probably the longest TL;DR I’ve ever read, and that tells something about my reading impression of this text.