https://macworks.dev/tags/jailbreaking/Recent content in Jailbreaking on MacWorksHugoenhttps://macworks.dev/docs/week/simonwillison/simonwillison-2026-06-16/Mon, 01 Jan 0001 00:00:00 +0000https://macworks.dev/docs/week/simonwillison/simonwillison-2026-06-16/<h1 id="simon-willison--2026-06-16">Simon Willison — 2026-06-16<a class="anchor" href="#simon-willison--2026-06-16">#</a></h1> <h2 id="highlight">Highlight<a class="anchor" href="#highlight">#</a></h2> <p>The meatiest topic today is Simon&rsquo;s sharp criticism of the export controls placed on Claude Fable 5. He connects the dots between a press report and security expert Katie Moussouris to point out the absurdity of penalizing an AI model for successfully fixing security vulnerabilities, which is a core feature of cyberdefense.</p> <h2 id="posts">Posts<a class="anchor" href="#posts">#</a></h2> <p><strong><a href="https://simonwillison.net/2026/Jun/16/fable-5-export-controls/#atom-everything">The Fable 5 Export Controls Harm US Cyber Defense</a></strong> Simon strongly criticizes the US export controls placed on Claude Fable 5, citing security expert Katie Moussouris. The so-called &ldquo;jailbreak&rdquo; that triggered the ban was merely researchers asking the model to &ldquo;fix this code&rdquo; after it had refused a prompt to &ldquo;review the code for security issues&rdquo;. Simon argues that banning models for executing the &ldquo;find, fix, and test loop&rdquo; fundamentally misunderstands how AI assists in defensive security, effectively penalizing a model for fixing bugs.</p>https://macworks.dev/docs/week/simonwillison/simonwillison-2026-06-15/Mon, 01 Jan 0001 00:00:00 +0000https://macworks.dev/docs/week/simonwillison/simonwillison-2026-06-15/<h1 id="simon-willison--2026-06-15">Simon Willison — 2026-06-15<a class="anchor" href="#simon-willison--2026-06-15">#</a></h1> <h2 id="highlight">Highlight<a class="anchor" href="#highlight">#</a></h2> <p>The most exciting update today is the release of <code>datasette-agent 0.3a0</code>, which introduces natural language database modification right from the terminal. By combining the new <code>execute_write_sql</code> tool with an <code>--unsafe</code> auto-approval mode, Simon has made it possible to chat directly with a SQLite database and modify its schema and records on the fly.</p> <h2 id="posts">Posts<a class="anchor" href="#posts">#</a></h2> <p><strong><a href="https://simonwillison.net/2026/Jun/15/datasette-agent/#atom-everything">datasette-agent 0.3a0</a></strong> · Source Simon just shipped a major update to his experimental <code>datasette-agent</code> project, adding an <code>execute_write_sql</code> tool that can prompt for user approval before writing to a database. He also enhanced the CLI chat terminal with options like <code>--yes</code>, <code>--root</code>, and <code>--unsafe</code> to streamline or bypass these permission checks entirely. Using the <code>--unsafe</code> flag alongside a model like <code>gpt-5.5</code>, developers can now converse directly with a specific database to execute structural changes, such as creating tables or inserting records via natural language.</p>