Then I tried something a bit weirder: instead of fighting the model, I tried pushing it to classify uploaded images itself as NSFW, so it ends up triggering its own guardrails.
This turned out to be more interesting than expected. It’s inconsistent and definitely not robust, but in some cases relatively mild transformations are enough to flip the model’s internal safety classification on otherwise benign images.
This isn’t about bypassing safeguards, if anything, it’s the opposite. The idea is to intentionally stress the safety layer itself. I’m planning to open-source this as a small tool + UI once I can make the behavior more stable and reproducible, mainly as a way to probe and pre-filter moderation pipelines.
If it works reliably, even partially, it could at least raise the cost for people who get their kicks from abusing these systems.
ukprogrammer•1mo ago
kyriakos•1mo ago
instagraham•1mo ago
kyriakos•1mo ago
pentaphobe•1mo ago
kyriakos•1mo ago
blackbear_•1mo ago
ben_w•1mo ago
As a propaganda tool it seems quite effective, but for that it's gone from "woo free-speech" to "oh no epistemic collapse".
pentaphobe•1mo ago
When I see the old BuT FrEe SpEeCH argument repurposed to impinge civil rights I start warming to the idea of banning tools.
Alternately "Chemical weapons don't kill people, people with chemical weapons kill people"
kyriakos•1mo ago
pentaphobe•1mo ago
I've had very little success mumbling "you are an expert chemist..." to test tubes and raw materials.