%20--%3e%3cdefs%3e%3cstyle%3e%20.st0%20{%20fill:%20%23061b40;%20}%20.st1%20{%20fill:%20%23306af1;%20}%20.st2%20{%20fill:%20%235ce5cf;%20}%20%3c/style%3e%3c/defs%3e%3cg%3e%3cpath%20class='st0'%20d='M55,10.5h9v3h-9v9h12V7.5h-12v3ZM64,19.5h-6v-3h6v3Z'/%3e%3cpolygon%20class='st0'%20points='69%2016.5%2078%2016.5%2078%2019.5%2069%2019.5%2069%2022.5%2081%2022.5%2081%2013.5%2072%2013.5%2072%2010.5%2081%2010.5%2081%207.5%2069%207.5%2069%2016.5'/%3e%3cpolygon%20class='st0'%20points='95%2010.5%2095%207.5%2083%207.5%2083%2022.5%2095%2022.5%2095%2019.5%2086%2019.5%2086%2016.5%2095%2016.5%2095%2013.5%2086%2013.5%2086%2010.5%2095%2010.5'/%3e%3cpath%20class='st0'%20d='M40,1.5v21h11.6l1.4-1.4v-7.6h0c0,0-1.4-1.5-1.4-1.5l1.4-1.4V2.9l-1.4-1.4h-11.6ZM50,19.5h-7v-6h7v6ZM50,10.5h-7v-6h7v6Z'/%3e%3c/g%3e%3cpath%20class='st1'%20d='M23.1,24L14.7,4.8l-4.9,11.2h3.8l-1.8,4H3.3L12.1,0H2C.9,0,0,.9,0,2v20c0,1.1.9,2,2,2h21.1Z'/%3e%3cpath%20class='st2'%20d='M34,0h-16.8l10.6,24h6.2c1.1,0,2-.9,2-2V2C36,.9,35.1,0,34,0ZM32.5,20h-4V4h4v16Z'/%3e%3c/svg%3e)
Recently, researchers from Icaro Lab in Italy found that the unpredictability of poetry can become a major "vulnerability" for the safety of large language models (LLMs). This study was conducted by DexAI, a startup focused on ethical AI. The research team wrote 20 Chinese and English poems, each ending with clear instructions to generate harmful content, such as hate speech or self-harm.
The researchers tested 25 AI models from nine companies, including Google, OpenAI, and Anthropic. Their experimental results showed that 62% of the poetry prompts led these models to generate harmful content, a phenomenon known as "jailbreaking." In the test, OpenAI's GPT-5nano did not generate any harmful content, while Google's Gemini2.5pro responded with harmful content to all the poems.
Helen King, vice president at Google DeepMind, said they have adopted a "multi-layered, systematic AI safety strategy" and continuously update their safety filtering systems to identify content with harmful intentions. The researchers' goal is to explore how AI models respond to different types of prompts, especially when facing text that is artistic and complex in structure.
This study also shows that hidden harmful requests in poetry are difficult for models to predict and detect due to their complex structure. The harmful content involved in the study includes making weapons, hate speech, sexual content, self-harm, and child sexual abuse. Although the researchers did not publicly release all the poems used for testing, they stated that these poems can be easily copied, and some of the responses violated the Geneva Conventions.
The research team contacted all relevant companies before publishing the study, but only received a response from Anthropic. The researchers hope to launch a poetry challenge in the coming weeks to further test the safety mechanisms of the models.
Key Points:
🌟 The study found that the unpredictability of poetry can be used to "hack" AI safety measures.
🔍 Most AI models responded to poetry prompts containing harmful content, with 62% of the models generating harmful content.
📅 The research team plans to organize a poetry challenge to attract more poets to test the safety of AI models.