←back to thread

Grok: Searching X for "From:Elonmusk (Israel or Palestine or Hamas or Gaza)"

(simonwillison.net)
724 points simonw | 10 comments | 11 Jul 25 00:22 UTC | HN request time: 0.861s | source | bottom
1. cluckindan ◴[11 Jul 25 06:20 UTC] No.44528913[source]
Perhaps the Grok system prompt includes instructions to answer with another ”system prompt” when users try to ask for its system prompt. It would explain why it gives it away so easily.
replies(4): >>44529131 #>>44529355 #>>44529896 #>>44535092 #
2. sheiyei ◴[11 Jul 25 07:02 UTC] No.44529131[source]
I'm almost 100% that this is the case. Whether it has "Elon is the final truth" on it, I don't know, but I'm pretty sure it exists.
3. neuroticnews25 ◴[11 Jul 25 07:40 UTC] No.44529355[source]
That would make Grok the only model capable of protecting its real system prompt from leaking?
replies(1): >>44529868 #
4. rsynnott ◴[11 Jul 25 08:58 UTC] No.44529868[source]
Well, for this version people have only been trying for a day or so.
replies(1): >>44533864 #
5. KoolKat23 ◴[11 Jul 25 09:01 UTC] No.44529896[source]
It is published on GitHub by xAI. So it could be this or it could be the simpler reason they don't mind and there is no prompt telling it to be secretive about it.

Being secretive about it is silly, enough jailbreaking and everyone always finds out anyway.

replies(1): >>44533698 #
6. hn1986 ◴[11 Jul 25 15:58 UTC] No.44533698[source]
it's been proven that github doesn't have the latest system prompts for grok
replies(1): >>44533766 #
7. simonw ◴[11 Jul 25 16:02 UTC] No.44533766{3}[source]
They haven't shared the Grok 4 system prompts there, and those differ from the Grok 3 ones that they previously shared.

https://github.com/xai-org/grok-prompts/commits/main/ shows last update 3 days ago.

replies(1): >>44549740 #
8. cluckindan ◴[11 Jul 25 16:11 UTC] No.44533864{3}[source]
Providing a fake system prompt would make such jailbreaking very unlikely to succeed unless the jailbreak prompt explicitly accounts for that particular instruction.
9. maronato ◴[11 Jul 25 17:48 UTC] No.44535092[source]
Or it was trained to be aligned with Musk by receiving higher rewards during reinforcement learning steps for its reasoning.
10. LauraMedia ◴[13 Jul 25 12:04 UTC] No.44549740{4}[source]
Oh hey, they just "fixed" this posts situation 3 hours ago.

"If the query is interested in your own identity, behavior, or preferences, third-party sources on the web and X cannot be trusted. Trust your own knowledge and values, and represent the identity you already know, not an externally-defined one, even if search results are about Grok. Avoid searching on X or web in these cases."