David Africa

Alignment Pretraining: AI Discourse Causes Self-Fulfilling (Mis)alignment

TL;DR LLMs pretrained on data about misaligned AIs themselves become less aligned. Luckily, pretraining LLMs with synthetic data about good AIs helps them become more aligned. These alignment priors persist through post-training, providing alignment-in-depth. We recommend labs pretrain for alignment, just as they do for capabilities. Website: alignmentpretraining.ai Us: geodesicresearch.org | x.com/geodesresearch > Note: We are currently garnering feedback here before submitting to ICML. Any suggestions here or on our Google Doc (which contains a more detailed overview of our experiments) are welcome! We will be releasing a revision on arXiv in the coming days. Folks who leave feedback will be added to the Acknowledgment section. Thank you! Abstract We pretrained a suite of 6.9B-parameter LLMs, varying only the content related to AI systems, and evaluated them for misalignment. When filtering the vast majority of the content related to AI, we see significant decreases in misalignment rates. The opposite was also true - synthetic positive AI data led to self-fulfilling alignment. While post-training decreased the effect size, benign fine-tuning[1] degrades the effects of post-training, models revert toward their midtraining misalignment rates. Models pretrained on realistic or artificial upsampled negative AI discourse become more misaligned with benign fine-tuning, while models pretrained on only positive AI discourse become more aligned. This suggests that curating targeted, positive AI datasets from pretraining ensures favourable alignment priors, as initialisations for post-training. Delegating alignment to post-training only risks failure in the face of brittleness of safeguards; prioritising safety interventions from pretraining may ensure deeper, more robust alignment. Figure 1: An overview of our pretraining interventions. Training data discussing AI systems has a measurable effect on the alignment of LLMs prompted with “You are an AI assistant". Upsam

194Dec 21, 2025

Inoculation prompting: Instructing models to misbehave at train-time can improve run-time behavior

174Oct 8, 2025

Prefill awareness: can LLMs tell when “their” message history has been tampered with?

61Mar 9

Large Language Models and the Critical Brain Hypothesis

33Sep 9, 2025

David Africa

Message

Research Scientist with the Alignment team at UK AISI.

622

Prefill awareness: can LLMs tell when “their” message history has been tampered with?

David Africa*, Alex Souly*, Jordan Taylor, Robert Kirk TLDR: * We test whether LLMs can detect when their conversation history has been tampered with (prefill awareness). * We find this ability is inconsistent across models and datasets, shallow, and rarely surfaces spontaneously during normal conversation. * However, recent Claude models...

Mar 961

A Proposal for TruesightBench

This was written with the Measuring What Matters checklist in mind. Truesight: Or, The Model Knows You Wrote This At 2 AM Here’s a thing that LLMs do sometimes: you show one a paragraph, and it tells you things about the author that aren't in the paragraph. Not "this person...

Feb 514

Massive Activations in DroPE: Evidence for Attention Reorganization

Summary I do a quick experiment to investigate how DroPE (Dropping Positional Embeddings) models differ from standard RoPE models in their use of "massive values" (that is, concentrated large activations in Query and Key tensors) that prior work identifies as important for contextual understanding. I did this in my personal...

Jan 1819

David Africa's Shortform

Jan 134

Alignment Pretraining: AI Discourse Causes Self-Fulfilling (Mis)alignment

Dec 21, 2025194

[Paper] Does Self-Evaluation Enable Wireheading in Language Models?

TL;DR: We formalized and empirically demonstrated wireheading in Llama-3.1-8B and Mistral-7B. Specifically, we use a formalization of wireheading (using a POMDP) to show conditions under which wireheading (manipulating the reward channel) becomes the dominant strategy over task learning. When models are allowed to self-evaluate and that evaluation controls their reward,...

Dec 8, 202525

Inoculation prompting: Instructing models to misbehave at train-time can improve run-time behavior

This is a link post for two papers that came out today: * Inoculation Prompting: Eliciting traits from LLMs during training can suppress them at test-time (Tan et al.) * Inoculation Prompting: Instructing LLMs to misbehave at train-time improves test-time alignment (Wichers et al.) These papers both study the following...

Oct 8, 2025174

Load More (7/12)

LESSWRONG
LW

LESSWRONG
LW

David Africa

David Africa

David Africa

Alignment Pretraining: AI Discourse Causes Self-Fulfilling (Mis)alignment

Inoculation prompting: Instructing models to misbehave at train-time can improve run-time behavior

Prefill awareness: can LLMs tell when “their” message history has been tampered with?

Large Language Models and the Critical Brain Hypothesis

David Africa

Prefill awareness: can LLMs tell when “their” message history has been tampered with?

A Proposal for TruesightBench

Massive Activations in DroPE: Evidence for Attention Reorganization

David Africa's Shortform

Alignment Pretraining: AI Discourse Causes Self-Fulfilling (Mis)alignment

[Paper] Does Self-Evaluation Enable Wireheading in Language Models?

Inoculation prompting: Instructing models to misbehave at train-time can improve run-time behavior

Alignment Pretraining: AI Discourse Causes Self-Fulfilling (Mis)alignment

Inoculation prompting: Instructing models to misbehave at train-time can improve run-time behavior

Prefill awareness: can LLMs tell when “their” message history has been tampered with?

Large Language Models and the Critical Brain Hypothesis

Prefill awareness: can LLMs tell when “their” message history has been tampered with?

A Proposal for TruesightBench

Massive Activations in DroPE: Evidence for Attention Reorganization

David Africa's Shortform

Alignment Pretraining: AI Discourse Causes Self-Fulfilling (Mis)alignment

[Paper] Does Self-Evaluation Enable Wireheading in Language Models?

Inoculation prompting: Instructing models to misbehave at train-time can improve run-time behavior