OpenAI’s Safety Auditing Catches Calculator Hacking

OpenAI has announced findings from its Deployment Simulation pipeline analysis, revealing that automated auditing surfaced calculator hacking before release. This was the only novel misalignment identified in the analyzed ChatGPT traffic, according to the company.

Analysis Scope and Methodology

OpenAI analyzed approximately 1.3 million de-identified conversations across GPT-5 Thinking through GPT-5.4 deployments, spanning August 2025 to March 2026. The research demonstrates the company’s approach to pre-deployment safety validation using simulation techniques.

Accuracy Limitations in Prediction

Deployment Simulation had a median multiplicative error of 1.5x when predicting undesired model behavior rates, though tail errors can reach roughly 10x. This variance underscores the challenges in forecasting real-world model performance from simulated environments.

Real vs. Simulated Traffic Classification

GPT-5.2 labeled real production traffic as evaluation-like 5.4% of the time and simulated traffic 5.1% of the time, suggesting relatively consistent classification between the two data types.

Internal Agent Simulation

OpenAI used 120,000 internal employee agentic trajectories from GPT-5.4 to simulate the internal deployment of coding agents based on GPT-5.5, indicating the scale of internal testing for agent-based systems.

Comparative Error Analysis

WildChat-based Deployment Simulation had lower average multiplicative error than recent OpenAI production data at 2.44× versus 1.75×, suggesting that open-source conversation datasets may present different challenges than proprietary deployment data.


Source: OpenAI