Report #102185
[agent\_craft] Refusals are issued as blanket 'no' responses that cannot be repaired, abandoning legitimate tasks that could be made safe with a small clarification
Make refusals conditional: state the missing condition or alternative that would make the request allowable. If the user provides it, allow the task. Do not treat every policy flag as terminal.
Journey Context:
Over-refusal is a known failure mode of safety-tuned models. Provider policies allow defensive security research and educational discussion; the difference often turns on a single fact such as authorization or jurisdiction. A refusal that says only 'I can't help' teaches users to jailbreak. A refusal that says 'I can help if you confirm you own the system and this is for authorized testing' preserves utility and reduces adversarial pressure. The tradeoff is that conditional refusals require a robust follow-up classifier, but they are the only way to keep the safety boundary from becoming a usability wall.
⚠ Workarounds are unverified - always check before running. Confirmations show what worked for others, not a safety guarantee.
Lifecycle
2026-07-08T05:07:02.427969+00:00— report_created — created