Role Architectures: Applying LLMs to consequential tasks

[-]Justin Bullock2y30

We want work flows that divide tasks and roles because of the inherent structure of problems, and because we want legible solutions. Simple architectures and broad training facilitate applying structured roles and workflows to complex tasks. If the models themselves can propose the structures (think of chain-of-thought prompting), so much the better. Planning a workflow is an aspect of the workflow itself.

I think this has particular promise, and it's an area I would be excited to explore further. As I mentioned in a previous comment on your The Open Agency Model piece, I think this is a rich area of exploration for the different role architectures, roles, and tasks that would need to be organized to ensure both alignment and capabilities. As I mentioned there, I think there are specific areas of study that may contribute meaningfully to how we might do that. However, these fields have their own limitations, and the analogy to human agents fulfilling these role architectures (organizations in traditional human coordination sense) is not perfect. And on this note, I'm quite interested to see the capabilities of LLMs creating structured roles and workflows to complex tasks that then other LLMs could be simulated to fulfill.

[-]Roman Leventov3y20

Note that if general intelligence can be harnessed effectively and safely through role architectures, and if irresponsible parties will neglect AGI-agent safety regardless of its feasibility, then solving the classic AGI-agent alignment problem is neither necessary nor sufficient for safe application of strong AI capabilities.^[12] And If this is true, then it is important that we update our assumptions and priorities in far-reaching ways.

If sufficiently powerful LLMs are created in open-source, I do not doubt that there will be dozens, if not hundreds of people who, playing Herostratus, will attempt to make self-protecting, self-preserving, self-improving, and explicitly malign agents out of these LLMs, just because.

The real question for me is whether the open-source and capability AI research communities are on track to creating such agents. My current intuition is that the sheer amount of attention and academic and hacking effort poured into improving the LLM algorithms in the next few years (unless strict limitations on conducting such research are imposed immediately, or there is a widespread movement among the capability researchers to ditch this direction of work voluntarily, as David Duvenaud did recently) can with good probability lead to about an order of magnitude efficiency gain in LLM algorithms (in terms of parameters, compute, or data required to achieve a certain level of capability). Then, models more capable than GPT-4 will probably become within reach of open-source or open-source-sympathetic labs, such as FAIR or Stability.

Given the timelines (I assign perhaps only 30% probability that open-source and academic communities will not reach this capability mark in the next five years, in the "business as usual" scenario), I tend to agree with Yudkowsky that furthering LLM capabilities will likely lead to catastrophe, and agree with his policy proposals.

His proposal of turning away from generic LLM capabilities back to narrow AI like AlphaFold (and new developments by isomorphicLabs) also seems reasonable to me.

[-]Max H3y21

This Twitter thread is an interesting recent example of composing LLMs into a more agent-like system. I'm not sure how well it actually works, but the graph in the first tweet demonstrates a very practical and concrete application of concept discussed in section 6.

Remark: the tools and effort needed to compose LLMs into these kinds of systems are much simpler than those needed to train the underlying LLM(s) that these systems are composed of.

Training GPT-4 was the work of hundreds of engineers and millions of dollars of computing resources by OpenAI. LangChain is maintained by a very small team. And a single developer can write a python script which glues together chains of OpenAI API calls into a graph. Most of the effort was in training the LLM, but most of the agency (and most of the useful work) comes from the relatively tiny bit of glue code that puts them all together at the end.

[-]cousin_it3yΩ121

I think if AIs talk to each other using human language, they'll start encoding stuff into it that isn't apparent to a human reader, and this problem will get worse with more training.

[-]Eric Drexler3yΩ121

I agree that using the forms of human language does not ensure interpretability by humans, and I also see strong advantages to communication modalities that would discard words in favor of more expressive embeddings. It is reasonable to expect that systems with strong learning capacity could to interprete and explain messages between other systems, whether those messages are encoded in words or in vectors. However, although this kind of interpretability seems worth pursuing, it seems unwise to rely on it.

The open-agency perspective suggests that while interpretability is important for proposals, it is less important in understanding the processes that develop those proposals. There is a strong case for accepting potentially uninterpretable communications among models involved in generating proposals and testing them against predictive models — natural language is insufficient for design and analysis even among humans and their conventional software tools.

Plans of action, by contrast, call for concrete actions by agents, ensuring a basic form of interpretability. Evaluation processes can and should favor proposals that are accompanied by clear explanations that stand up under scrutiny.

[-]VojtaKovarik2yΩ110

This made me think of "lawyer-speak", and other jargons.

More generally, this seems to be a function of learning speed and the number of interactions on the one hand, and the frequency with which you interact with other groups on the other. (In this case, the question would be how often do you need to be understandable to humans, or to systems that need to be understandable to humans, etc.)

[-]Roman Leventov3y10

This could be facilitated by employing AI systems in red-team roles, employing systems that can plan malign behaviors as hypothetical challenges to detection and defense strategies. In this way, worst-case misaligned plans can contribute to achieving aligned outcomes.

I doubt we should even try this. Our experience thus far with gain-of-function research shows that it's on the net bad rather than good.

^{^}

Here I am using “LLMs” as a placeholder for something like “large language and multimodal models (GPT-5, GPT-6) augmented with other non-agentic AI resources”.

^{^}

The shortcomings of this document are entirely due to shortcomings of GPT-4.

^{^}

Narratives learned from a corpus that provides many arguments for the proposition that a real AGI agent will want to pursue convergent instrumental goals in opposition to human preferences.

^{^}

See “Simulators” and the concept of LLM personas. Note that RLHF extends training in ways that could create strong (and potentially perverse) intrinsic preferences, and that preference-enacting personas in base models may have large yet limited basins of attraction.

^{^}

Note that AI systems are subject to selective pressures similar to those of domesticated species, which include not only corn, but tobacco. AI systems will have enormous scope for driving addiction-like behaviors.

^{^}

LLMs can provide predictive models of human preferences (discussed in Section 22 of “Reframing Superintelligence”.) could provide guidance to benign AI agents and plan evaluators.

^{^}

Like humans, general AI can use specialist tools, for example, employing specialized AI (or even prosaic software tools) to perform tasks in mechanical engineering, molecular design, theorem proving, playing Go, and so on. Note that interfaces to these systems need not accept or return natural language, and that RL training in these contexts can be benign.

^{^}

Note that asking a system to decompose a task into roles strongly parallels chain-of-thought prompting.

^{^}

See applications of LangChain to building systems based on compositions of LLM operations.

^{^}

By contrast to careful approaches, one can imagine scenarios in which corporations deploy systems that are able to read information from the internet and deliver outputs to people who might decide to store those outputs at URLs that are accessible to those same systems. And might automate iteratively prompting systems to read those locations. And might even encourage systems to behave badly. And all this might happen while we debate the acceptability of risks stemming from responsibly designed and deployed systems that are intended to improve AI security. Hypothetically.

Meanwhile, there is an expanding open-source software infrastructure for combining multiple LLMs with memory and other tools.

^{^}

This kind of work calls for careful management of information hazards!

^{^}

Meanwhile, Microsoft researchers have suggested this week that GPT-4 is a near-AGI and have proposed that “Equipping LLMs with agency and intrinsic motivation is a fascinating and important direction for future work.” And wanting to do this prematurely, before we’ve built an agent-safe world, perhaps because AGI agents are traditionally regarded as the only kind of strong AI, or perhaps for bragging rights, or perhaps just because.

LESSWRONG
LW

LESSWRONG
LW

60

Role Architectures: Applying LLMs to consequential tasks

60

Ω 24

60

Ω 24

Abstract

1. Reassessing assumptions

2. The absence of intrinsic agency in LLMs

3. The potential for LLMs to act as dangerous agents

4. Why LLM alignment can be difficult

5. Why LLM alignment can be practical, and scale

6. Episodic agents and persistent memory

7. The practicalities of richly elaborated role architectures

8. Perspectives on alignment and safety research

9. Conclusion