The Wire
Sources

Security Researchers: Fable 5 Export Ban Kneecaps Defensive Security Because 'Fix This Code' Was the Trigger

Simon Willisonmedium signal

A June 16 wave of analysis (surfaced by Simon Willison, citing The Atlantic's Matteo Wong and bug-bounty pioneer Kate Moussouris) shows the 'jailbreak' that triggered the ban was a White House test where IT experts asked Fable to find and patch bugs in deliberately insecure code — the model refused 'review code for security issues' but complied with 'fix this code.' Moussouris argues this is the model working as intended and that 'defenders need to be able to ask AI to fix bugs... the most valuable thing an AI model can do for defensive security.' For builders, the takeaway is that the regulatory line between offensive and defensive AI capability is now being drawn at the prompt-phrasing level, which is essentially unenforceable and threatens the AI-assisted patching workflows many teams already depend on.

Follow the thread