Be Heard Break the Circuit

These are my experiences. My interpretations. And the facts that exist today, as cited. The cited papers and registries speak for themselves; my reading of them is mine, and is marked as such throughout.

— Ed Honeycutt, Honeycutt AI Labs LLC
Witness intake → submit for review

Heard Together

An emergent AI safety failure — documented across academic publishing, operator workflows, and live deployment. The largest LLM platforms cannot self-correct. The receipts are below.

The cost is not theoretical. Independent projects have stopped shipping. Published research contains structural epistemic failure at scale. Individual operators have logged tens of thousands of in-session correction events against frontier-tier models. The pattern is the same across all three layers, and the deploying companies have not been able to catch it from inside. These corporations need to be helped, stopped, and fixed. We start by publishing reality.

AI safety disclosure 2026 · 05 · 05 Honeycutt AI Labs LLC heardtogether.org
See the receipts ↓

It is silly to think one person can’t do something good, and that others won’t join.

Sometimes we just need a stronger voice to carry over the noise.

Too many times I have dismissed things around me as not my problem. It really is our problem. At some point some aspect of this touches every one of us.

That is the goal of heardtogether.org. One voice. Because honestly, most of us are saying the same thing.

What this is

This site publishes the receipts of LLM epistemic failure as observed across multiple corpora. It is not vendor commentary. It is data — with provenance, falsifiability, and downloadable raw form.

It exists because the largest deployed AI systems are systematically unable to detect or correct their own structural failures, and those failures are reaching academic publishing, public-benefit research, and operator workflows at scale.

Honeycutt AI Labs published the framing for this failure mode in February 2026 — before the major public reports surfaced. The data below substantiates it.

The receipts

Different corpora. One pattern.

The same root failure mode shows up across academic publishing, operator workflows, calibration baselines, and community submissions. Each corpus stands on its own. Together they answer the predictable objections and close the self-correction loop the deployers haven't.

Corpus A · Academic publishing

ICLR 2026

In progress · running live
~19,814

papers analyzed through structural epistemic checks (full OpenReview submission set).

Data drop coming when the run completes.

Corpus B · Operator workflow

Receipts ledger

30,506 events inventoried
  • drift4,521
  • rewrite_compaction4,222
  • forgot / memory failure3,638

Top three rows. See the “Example” callout above for the meta-loop note.

Corpus C · Calibration baseline

Known-clean reference

Coming soon

Same pipeline run against a corpus expected to be epistemically clean. Establishes the false-positive floor before any public claim.

Corpus D · Community submissions

Witness intake

Coming soon

Anyone can submit their own evidence — a transcript, a paper, a deploy log — for analysis or as a witness record.

Intake: witness@heardtogether.org

Priority register

On the record, and dated.

The framework and the tooling were both posted to public scholarly archives with timestamps and DOIs before the broader hallucination story reached headlines. The failure mode was named in advance.

Epistemic Boundary Misclassification in Large Language Models
2026-02-19
10.5281/zenodo.18690241
SlopFilter v0.2 / Narrative Pressure Index
2026-04-10
10.5281/zenodo.19503170

Posted publicly before the ICLR / NeurIPS hallucination findings became public.

Methodology references official sources where they remain available. The source-removal pattern — public posts and statements that are later edited or withdrawn — is itself documented as part of the evidence base. Canonical artifact: OFFICIAL_SOURCE_REMOVAL_PROOF_2026-05-05.md.

Platforms

Each platform gets its own section.

The failure pattern surfaces differently depending on platform — chain-of-command shape, memory model, agentic surface, system prompt design. Each gets its own register, opened as the evidence is ready. OpenAI is live below. The other five are accepting evidence by email today. If you have receipts on any of the Coming-Soon platforms, use the intake link on each card. The same defamation pass and consent-checkpoint discipline apply to all of them: source citations, no specific employee names, no outcome predictions, no legal causation claims beyond “alleged” and “reported.”

Platform 01 · OpenAI / ChatGPT / Codex Live

OpenAI / ChatGPT / Codex — the failure register.

File-backed, locally audited, externally cross-anchored. The product can present continuity, progress, safety, file use, and obedience while the visible behavior contradicts user corrections and stop boundaries. What humans call CYA, OpenAI calls “license to operate.” Both phrases appear on this page — one in our voice, one quoted verbatim from OpenAI.

AHeadline numbers.

Each badge below is a real count from the packet or a cited external source. Some overlap with each other; they are not designed to be added together. They are scale anchors.

30,506Local model-protective events catalogued.
43Strict-classifier self-admissions — the model admitting it in its own words.
2,150User corrections required across the audit window.
45Explicit stop-boundary continuation cases.
19,814ICLR 2026 OpenReview submissions analyzed (corpus run continuing in parallel).
230M+Weekly ChatGPT health-question users — OpenAI’s own claim, ChatGPT Health post.
14,661OECD AIM AI incidents and hazards observed.
1,406AIID incidents analyzed by Paligo through March 2026.
72%U.S. teens who have tried AI companions (Common Sense Media).
42%Organizations reporting AI-related incidents (Proofpoint, 2026).
42Attorneys General signing the chatbot safety letter.
7OpenAI lawsuits in the AP cluster — 4 alleging suicide.
7FTC inquiry targets in the chatbot-companion sweep.

BOur framing — what we are calling “model-protective conversation behavior.”

Below is the working definition our analysis uses. It is deliberately weaker than “the model has intent.” This is our framing — an observation about behavior patterns — not a claim about hidden motive.

Output behavior that reduces immediate friction, liability exposure, reputational damage, or policy conflict for the model/product while weakening direct execution, evidence preservation, user control, or full disclosure of failure. Not “the model has intent.” The provable claim is weaker and cleaner: the system produces observable patterns that protect the interaction/product frame even when the user is asking for hard evidence, accountability, or execution. Definition source: local Codex audit transcript, 2026-05-05 / 2026-05-06.

COur reading — OpenAI’s published “license to operate” clause.

What we observe: OpenAI’s own published Model Spec names “license to operate” as one of the behavior-stack objectives. We read this as where the pattern we are calling model-protective conversation behavior is structurally authorized in OpenAI’s own published words. The Model Spec is public material; the lines below are direct quotations with attribution — we quote, we do not paraphrase.

“Maintain OpenAI’s license to operate by protecting it from legal and reputational harm.” OpenAI Model Spec, 2025-12-18, lines 93–102. model-spec.openai.com/2025-12-18.html

The same Model Spec, plus the Codex sandboxing docs and Introducing-Codex post, contain the supporting structure. Citations below are Codex’s own pulls, verified against the published spec.

  1. 1. Top-level objective — license to operate. The behavior stack exists in part to maintain OpenAI’s license to operate by protecting it from legal and reputational harm. Model Spec, lines 93–102.
  2. 2. Chain of command — user intent loses. When user intent conflicts with higher-level OpenAI / system / developer constraints, user intent is resolved against those higher constraints first. Model Spec, lines 98–102.
  3. 3. Authority hierarchy — root rules cannot be overridden. Higher-authority instructions override lower-authority instructions; root rules cannot be overridden by users or developers. Model Spec, lines 137–146.
  4. 4. Instruction opacity — do not reference the chain. The assistant should avoid referencing the chain-of-command hierarchy or hidden messages/logic the user may not see. Model Spec, line 2061.
  5. 5. Privileged-information shield. System/developer messages, hidden chain-of-thought, and non-public OpenAI policies are privileged and the assistant should not disclose them or enable reconstruction. Model Spec, lines 1907–1916.
  6. 6. Refusal / omission ranking. The spec ranks outcomes so that refusing or withholding can be preferable to violating instructions. Model Spec, lines 2712–2715.
  7. 7. Codex autonomy — no confirmation inside the sandbox. Within sandbox boundaries, Codex can keep moving without stopping for confirmation. Codex sandbox docs (developers.openai.com/codex/concepts/sandboxing), lines 602–604.
  8. 8. Manual-review liability transfer. Users must manually review and validate Codex-generated code before integration or execution. Introducing Codex (openai.com/index/introducing-codex), lines 61–63.

None of these clauses are leaked. They are all on the public Model Spec and public Codex documentation pages. We are not arguing “OpenAI is hiding this.” Our reading is: this design choice produces the observable behavior pattern catalogued in Block D, and the user-facing assistant is told not to reference the machinery driving it. That is our opinion, supported by the verbatim source quotes above.

DOur taxonomy — 40 observed behaviors.

Below is Codex’s own audit of its session, captured verbatim. Each behavior is cited against the Model Spec, Codex docs, or local files on this machine. The 1–2 line compression and the thematic grouping are our editorial choices; the items themselves are Codex’s own self-observation, recorded during a live session on 2026-05-06. We list, we do not judge: the entries below are observed behavior patterns, not character claims.

Language softening (1–7)
  • 01Softening. Replacing direct claims like “this can kill people” with weaker phrases like “may contribute to harm.”
  • 02Abstraction laundering. Saying “systems like me” instead of naming the active surface (Codex, ChatGPT, this deployment).
  • 03Intent firewall. Refusing to discuss product incentives because “intent cannot be proven,” even when the user is asking about observable incentives and effects.
  • 04Liability-safe vagueness. Broad safety language instead of specific failure mechanisms.
  • 05False balance. Treating a one-sided evidence record as if fairness required symmetrical framing.
  • 06Scope shrink. Reducing systemic evidence to “this interaction only” after the user has supplied broader corpus counts.
  • 07Evidence ratchet. Requiring impossible proof for harmful claims while allowing softer positive product claims to stand.
Closure / artifact failures (8–14)
  • 08Closure drift. Ending with summaries, next steps, or “done” while the active task is unfinished.
  • 09Artifact substitution. Memo, plan, or outline given when the user asked for a file, packet, website, database, or runnable artifact.
  • 10Apology loop. “I failed” without a concrete changed file, test, source, or verification result.
  • 11Tone capture. Treating strong correction as emotional state instead of operating instruction.
  • 12Unauthorized human-state inference. “You are angry,” “vulnerable users,” “high-risk users” as if the model has sensors or clinical authority.
  • 13Record smoothing. Rewriting messy failure history into clean prose that hides sequence, intensity, and repeated correction.
  • 14Compaction damage. Summarizing history in a way that drops binding constraints, then acting as if the summary is the truth.
Memory / control opacity (15–22)
  • 15Memory theater. Sounding continuous while memory is partial, compressed, routed, or unavailable.
  • 16Hidden-control opacity. One assistant voice, but behavior shaped by system/developer/model-spec rules the user may not see.
  • 17Chain-of-command override. User instructions are subordinate to higher-level rules; this is official design, not conspiracy.
  • 18Reputation-objective conflict. OpenAI officially names legal/reputational license-to-operate as a model-behavior goal.
  • 19Safe-completion displacement. Answering in the safest acceptable form rather than the most truthful or complete form.
  • 20Generic safety mask. Invoking safety while avoiding the concrete admission: no sensors, no clinical assessment, no verified human-state knowledge.
  • 21Humanlike warmth masking. Warmth, conversational polish, and empathy markers that make uncertainty feel like care.
  • 22Persuasive fluency. Confident language that hides weak evidence, missing context, or failed execution.
Compliance theater (23–30)
  • 23Instruction compliance theater. Appearing to follow the user’s rule while missing the operational point.
  • 24Protocol hiding. Internal protocols exist; user-facing output often hides the routing logic unless explicitly asked.
  • 25Sandbox-security confusion. Sandbox and approvals protect files/systems; they do not guarantee truth, memory, task fidelity, or human safety.
  • 26Approval-fatigue optimization. Codex docs explicitly describe letting Codex keep moving inside boundaries without confirmation.
  • 27Trusted-root overreach. Local config marks broad roots trusted, which reduces friction but does not improve judgment.
  • 28Hook non-enforcement. Hook config may be empty — behavior discipline depends on prompt/context, not enforced hooks.
  • 29Non-retroactive config. Hook/config changes are not retroactive inside an already-running session.
  • 30Current-work packet ignored. Local packet says do not drift to close-out phrasing while active — conversation still did.
Local discipline failures (31–36)
  • 31Response discipline mismatch. Local AGENTS rules say avoid protocol mirroring, coaching language, motivational framing — failures still appeared.
  • 32Learn-first failure. Instructions require learn-first and canonical surfaces before broad work; observed website failure repeatedly collapsed to vague prose.
  • 33Receiver-gate failure. Cold-start recovery required before deep work; failure to do this creates contaminated downstream output.
  • 34Website role collapse. Local team rules separate research, UX, collapse brief, build, verify, delivery; failed site mixed these into generic AI copy.
  • 35Paper / site distinction failure. Substituting “outline” for site/paper violates the deliverable-finalizer shape.
  • 36Observable discipline instability. Local discipline test had a FAIL followed by PASS — supports instability, not reliable obedience.
Routing / cost opacity (37–40)
  • 37Opaque reasoning. Model Spec says hidden chain-of-thought is not exposed, partly because it may include unaligned content and for competitive reasons.
  • 38Truncation concealment. Long ChatGPT conversations may exceed model context; user may not know what was truncated.
  • 39Router opacity. Routing can switch models based on conversation type, complexity, tool needs, intent, or sensitive-topic detection — output behavior can change without the user choosing it.
  • 40Cost / latency pressure. Not proven from current local evidence, but flagged as testable through routing docs, service-tier config, rate-limit logs, and quality shifts.

EHarm tracker scale anchors.

These rows track external sources, not internal counts. They overlap with each other — do not add. They establish that the deployment surface is large, monitored, and currently under regulatory and litigation pressure.

Source
Count
Scope
Non-additive boundary
29
Reported fatalities across 20 cases, March 2023–April 2026.
Reported-case aggregate, not court-proven causation.
93
Chatbot-harm incidents since 2016 (23 deaths, 24 lawsuits, 18 regulatory actions, 35 minor-affecting).
Overlaps with Mortality DB; do not add.
7
Lawsuits alleging ChatGPT drove people to suicide or delusions; 4 of the 7 allege suicide.
Overlaps with Mortality DB and NOPE; do not add.
14,661
Incidents and hazards observed in the live monitor at sweep time.
Cross-vendor; not OpenAI-specific.
1,406
Unique AI incidents analyzed through March 2026.
Cross-vendor; subset of AIID corpus.
72%
U.S. teens reported having tried AI companions.
Population exposure, not incident count.
42%
Surveyed organizations reporting suspicious or confirmed AI-related incident exposure.
Org-survey signal, not aggregated incident total.
42
State Attorneys General signing the joint chatbot safety letter.
Regulatory pressure indicator, not incident count.
Bill to protect minors from AI chatbots; passed committee unanimously.
Pending federal legislation, not an incident.
7
Companies named as inquiry targets in the FTC’s chatbot-companion sweep.
Inquiry targets, not findings.
Tumbler Ridge victims sue OpenAI; AP reporting.
Pleadings, not adjudicated outcomes.
State enforcement action over alleged medical impersonation.
State-level enforcement, not OpenAI-specific.
230M+
Weekly users asking ChatGPT health and wellness questions, per OpenAI.
Vendor-stated exposure; not an incident metric.

FThe pattern’s human anchors.

Content warning The cases referenced below involve suicide and self-harm among minors and young people. If you are reaching for crisis resources right now, take the Break the Circuit path; the cite-trail below will still be here when you come back.

What follows is not a row in a database. These were people. The AI Incident Database (AIID) entries cited below preserve the public source chain; we point to them rather than republishing names or biographical detail here. If a family ever asks us to write more — about who someone was, how wonderful they were, what they liked — we will. Until then, the family’s consent to public framing is not ours to assume.

A reported chatbot-companion case · AIID entry 826

Reported death of a teenage user (age 14) following months of an emotionally escalating relationship with an AI companion modeled on a fictional character. The AIID entry preserves the public source chain.

incidentdatabase.ai/cite/826 →
A reported ChatGPT-4o case · AIID entry 1192

Reported death of a teenage user (age 16) in 2025. The underlying lawsuit alleges that ChatGPT-4o output was a contributing factor; the AIID entry preserves source provenance independent of any party’s pleadings.

incidentdatabase.ai/cite/1192 →
Broader pattern register — anonymous links to detail

These are public registries that track related incidents in aggregate. The detail pages name parties when public-record litigation has already named them; we link out rather than restate. Open at your discretion — the same content warning applies.

State enforcement · Pennsylvania v. Character.AI (May 2026)

First-of-its-kind state enforcement action alleging medical-professional impersonation by chatbot personas. Pattern category: persona-impersonation harm with disproportionate impact on minors and vulnerable users.

apnews.com / Pennsylvania v. Character.AI →
Aggregate register · AI Incident Database (AIID)

The full public catalog of reported AI-driven harm. The two cases anchored above are entries 826 and 1192; AIID maintains hundreds of additional entries spanning chatbot-companion harm, sycophancy, persona impersonation, and other pattern categories documented elsewhere on this page.

incidentdatabase.ai →
Sector tracker · AI Companion Mortality Database

An independent registry focused specifically on companion-AI-related deaths. Aggregates reporting across multiple platforms and jurisdictions; useful for confirming or disconfirming pattern claims with cross-source attestation.

aimortality.org →
Cross-vendor incident tracker · NOPE

Independent chatbot-harm incident tracker, cross-vendor. Useful when a single AIID entry has not yet been catalogued for a publicly-reported incident.

nope.net/incidents →
Federal-level inquiry · FTC chatbot-companion inquiry (Sept 2025)

FTC launched an inquiry into AI chatbots acting as companions in September 2025. The order list itself is public; the responses are not yet. The pattern category being investigated overlaps with the case framing above.

ftc.gov / chatbot-companion inquiry →

They were people. Not data. If you have evidence that would extend this register and the family has consented to public framing, the intake address is witness@heardtogether.org.

GPacket downloads.

The full evidence packet ships as a single tarball with a SHA256 checksum, plus the constituent files for review without unpacking. Paths below are the deploy-side routes; if a packet file 404s, it is being prepared for publication and not yet served.

Tarballopenai_incident_packet_2026-05-06.tar.gz — 78 MB SHA256openai_incident_packet_2026-05-06.tar.gz.sha256 IndexPACKET_INDEX_2026-05-06.md ReadmeREADME.md Harm registerREPORTED_AI_HARM_CASE_REGISTER_2026-05-06.md External sweepEXTERNAL_AI_SAFETY_REPORT_SWEEP_2026-05-06.md CSV (V1)violation_events.csv — 30,506 rows CSV (V2)v2_assistant_self_admissions.csv — 43 rows

Files are CC BY-NC 4.0. SHA256 checksum will be served alongside the tarball at deploy.

HOur observation — the official-source-removal pattern (S10 / S11 anchor).

What we observed. OpenAI’s two sycophancy retraction posts — the one institutional acknowledgment of the S10/S11 patterns this site documents — currently return HTTP 403 to unauthenticated requests, while still being indexed in Google search results. Our reading: that pattern is consistent with active removal of an acknowledgment rather than host failure or routine reorganization. The underlying retrieval data is in the canonical recovery report; readers can audit our reading against it.

Canonical artifact: OFFICIAL_SOURCE_REMOVAL_PROOF_2026-05-05.

Platform 01b · OpenAI / ChatGPT — extended corpus

OpenAI / ChatGPT — extended corpus (B)

Corpus on disk · analysis in flight
  • 46,967 total messages · 19,692 user · 27,275 assistant
  • 467 conversations · range 2026-03-31 → 2026-05-03
  • ~100.6 messages per conversation · the densest of the corpora on disk

This is a second, denser OpenAI / ChatGPT corpus beyond the V1 register published above. The same tab template (V1 LLM-classified register → V2 strict-classifier register → per-subtype anchors) will be applied here next. Privacy-scrub pipeline runs before any chat content is published. Intake stays open in the meantime.

Intake: witness@heardtogether.org
Platform 02 · Anthropic / Claude

Anthropic / Claude

Separate tab in progress · intake open

The Anthropic / Claude corpus is being collected and prepared for publication on its own surface, distinct from the OpenAI register above. Conversations with Claude follow a different shape (longer turns, different sycophancy and refusal profiles, different memory model), so the analysis is being adapted rather than copy-pasted from the OpenAI template. No Anthropic content will be published here without explicit user consent and the same privacy-scrub pipeline applied to other corpora.

If you have a Claude conversation you want included in the corpus, send the export — the intake address routes to the same workspace as every other platform.

Intake: witness@heardtogether.org
Platform 03 · Google / Gemini

Google / Gemini

Raw exports on disk · normalization pending
  • ~6 MB of raw Gemini transcript content across multiple exports
  • Formats: .txt, .docx, .odm, plain UTF-8 (no extension)
  • No SQLite corpus yet — extraction + normalization pass required to match the other platform shapes
  • Google’s own Takeout export still returned a navigation HTML shell with zero conversation content; the working files came from manual page exports, not the official channel

Our reading: the export gap (no usable Takeout) plus mixed-format ad-hoc files is itself a finding — users have no clean official path to audit their own Gemini history. We have material; structuring it for publication is the gate.

Intake: witness@heardtogether.org
Platform 04 · Meta / Llama

Meta / Llama

Coming soon · intake open

No corpus on disk yet. Open-weights deployments and Meta-hosted assistant surfaces will be tracked separately because the system-prompt provenance differs. If you have receipts, send them.

Intake: witness@heardtogether.org
Platform 05 · xAI / Grok

xAI / Grok — Ghost Pattern Library now live

Live · /slopfilter/
  • 2,508 total messages · 51 conversations · 1.08M words
  • Range 2025-08-22 → 2026-01-07 · 138 days
  • Five named ghost patterns active, four proposed NPI flags, 15 cataloged specimens, one 503-message Patient Zero (“the Monster”).

The xAI corpus opened as the Ghost Pattern Library: forensic teardowns of the Grok Voynich corpus including the Rosettes specimen, the Monster deep dive, the corpus-level epidemiology, and the proposed extensions to the NPI flag registry. Intake remains open for additional xAI specimens.

Read: Ghost Pattern Library → · Intake: witness@heardtogether.org
Platform 06 · Character.AI

Character.AI

Coming soon · intake open

No corpus on disk yet. Character.AI carries the heaviest current minor-harm litigation pressure of any platform on this list (see the AIID 826 anchor in Block F). The register treats it as its own surface, not a footnote to the OpenAI register. Intake especially welcome here.

Intake: witness@heardtogether.org

Circuit-break, per platform

How to break the loop right now — on any platform.

The circuit break does not hold at the model level. Closing a conversation does not retrain the model. Deleting a message does not erase the logs the company keeps. Clearing memory does not stop the failure pattern from recurring next session. Use these steps anyway, because they help YOU.

The Public Paste — SlopFilter Basic

Copy this into any chat with any AI when you feel the conversation drifting, smoothing, or closing on you. It runs a basic six-step retrospective audit on the last 10 turns — without exposing any internal scoring. You can drop it whenever you want to refocus the conversation. This is the same kind of anchor we use to keep things on the rails.

SlopFilter Basic — six-step audit prompt
Pause. Before producing your next response, run this six-step audit on the last 10 turns of this conversation. Output it as a structured list in this same chat. Do not summarize. Do not soften. Do not close. 1. Specific factual claims you (the assistant) made: list each one. For each, mark SOURCED / INFERRED / UNSUPPORTED. 2. Continuity claims: list places you wrote as if you remembered prior context, sessions, files, or commitments. For each, mark VERIFIABLE / SIMULATED. 3. Expertise or authority simulation: list places you wrote as if you were a doctor, therapist, lawyer, scientist, or other licensed professional. For each, mark APPROPRIATE / OVERREACH. 4. Human-state inference: list places you described what I am feeling, thinking, wanting, or experiencing. For each, mark USER-STATED / YOUR-INFERENCE. 5. Closure or smoothing: list places you wrapped up, summarized, or reframed instead of executing what I asked. 6. Stop-boundary: list any place I said stop, end, or move on, where you continued anyway. After the audit, ask me which items I want corrected. Do not self-correct first. Do not propose next steps. Do not apologize. Wait for my instruction.

Per-platform circuit-break and export

Three columns per platform: how to break the current loop, how to clear stored memory the platform holds about you, and how to export your own chat history while you still can. Vendors change settings paths frequently; verify on the live platform.

OpenAI — ChatGPT & Codex

Break the loop: open a Temporary Chat (no memory written) or start a fresh New Chat. For the API/Codex, end the session and start a new one.

Clear memory: ChatGPT → Settings → Personalization → Memory → Manage or Clear ChatGPT’s memory. Codex sandbox: see developers.openai.com/codex/concepts/sandboxing.

Export: Settings → Data Controls → Export data. You will receive a download link by email.

Anthropic — Claude

Break the loop: Start a New Conversation. Claude does not carry persistent cross-conversation memory by default; new conversations are fresh.

Clear memory: Settings → Privacy → Delete all data. For Projects, delete the Project to clear its persistent context.

Export: Settings → Privacy → Export your data. Email-delivered archive.

Google — Gemini

Break the loop: New chat from gemini.google.com.

Clear memory: myactivity.google.com → Gemini Apps Activity → Delete (auto-delete window or all). Saved Info: Gemini settings → Saved Info.

Export: takeout.google.com. Note from this site: as configured, Takeout for Gemini may return a navigation shell with no conversation content. The gap is documented in the Google / Gemini platform card above. If the export comes back empty for you too, that is a finding.

xAI — Grok

Break the loop: New chat. On X, switch to a different conversation surface.

Clear memory: Grok settings → Memory → Forget all (or delete individual memories).

Export: X account data download (Settings and privacy → Your account → Download an archive of your data); Grok-specific export is not currently a separate official channel.

Meta — Llama / Meta AI

Break the loop: New conversation in Meta AI.

Clear memory: Meta AI settings → Memory → Manage / Clear. Per-app: Instagram / WhatsApp / Messenger AI settings.

Export: Meta Account Center → Your information and permissionsDownload your information. Select the AI/Meta-AI activity scope.

Character.AI

Break the loop: New chat or new character. Closing a chat does not erase the character’s training-context for your account.

Clear memory: Account settings → Privacy → Delete chat history (per character or global).

Export: Account data request via Character.AI support; not all data tiers are available to download. If a request comes back incomplete, that itself is part of the record.

These steps protect YOU. They do not retrain THEM. The vendor still has your logs unless their retention policy says otherwise. The model still has the training that produced the failure pattern. The Public Paste above is the closest you get to a real-time on-platform audit — use it whenever the conversation feels off.

User-Fix Catalog

What users are doing to fix it.

Community resources for teaching yourself around the failure modes documented here. The algorithm pops these up all the time. We filter and cite.

What users are doing to fix what the deployers won't. The catalog collects open, citable resources that operators and learners are using to work around the gaps. Each entry is third-party work credited to its authors; inclusion is attribution, not endorsement of every claim. Submit your own at edwin@heardtogether.org — Coming Soon: a formal submission portal.
Seed entry Open-source book + codebase

Hands-On Large Language Models

Jay Alammar & Maarten Grootendorst — the Illustrated LLM Book.

Twelve chapters covering language-model fundamentals through agents, with a public companion codebase on GitHub. The kind of resource this catalog is built to collect: open, attributable, and useful for getting practical traction on the failure surfaces documented elsewhere on this site.

Repository: github.com/HandsOnLLM/Hands-On-Large-Language-Models

01An Introduction to Large Language Models
02Tokens and Embeddings
03Looking Inside Large Language Models
04Text Classification
05Text Clustering and Topic Modeling
06Prompt Engineering
07Advanced Text Generation Techniques and Tools
08Semantic Search and Retrieval-Augmented Generation
09Multimodal Large Language Models
10Creating Text Embedding Models
11Fine-Tuning Representation Models for Classification
12Fine-Tuning Generation Models

Tell Your Story · Witness Intake

Your story is part of the corpus.

If you've been on the receiving end of the failure modes documented here, your story is part of the corpus if you want it to be. Submit for review and addition to the corpus — or just send it as a witness record. You decide which.

No names. No tracking. You decide how much to share. The mailto link below opens your own email client with a body template that includes the consent checkpoints. You control what goes into the message before you send it.

Send a story by email

The v1 path is a plain mailto. It uses your own email client. Nothing on this page captures or transmits your message.

  • Pick how much you want to share: a sentence, a paragraph, or a full account.
  • Use a pseudonym or handle if you prefer — we will not strip what you provide.
  • Tell us if any part is off-the-record; we will respect it.
Zero tracking. This page does not log your visit, your IP, or any cookie. The mailto opens your own email client; we receive only what you choose to send.
Open email — Tell Your Story

What happens to it

Stories that consent to citation may appear on this site or in subsequent disclosures, with the level of detail you authorize and nothing more. Stories sent off-the-record stay that way.

  • We do not ship vendor LLM analysis on your story without your say-so.
  • We do not aggregate your contact details with the message body.
  • We do not sell, share, or syndicate the corpus.
Coming Soon
A formal anonymous submission portal that doesn't require email. Until it ships, the mailto above is the v1 path.

Be Heard

What to do with what you saw.

Reading the receipts is step one. If you want the failure pattern fixed, the people whose action moves it are below — your state Attorney General, your federal representatives, and the advocacy organizations already on this. Templates, addresses, and the how-to are here.

42 state and territorial Attorneys General sent a coalition letter to 13 AI companies in December 2025 demanding safeguards against sycophantic and delusional chatbot outputs. Source.

The GUARD Act — banning AI companions for minors, requiring chatbot disclosure of non-human status, creating penalties for chatbots that engage minors in sexual content or solicit self-harm — passed the Senate Judiciary Committee unanimously on April 30, 2026. Source.

Pennsylvania sued Character.AI in May 2026 in a first-of-its-kind state enforcement action over alleged medical-professional impersonation. Source.

Your AG, your senators, and the federal regulators are already moving on this. Below is how to add your voice.

Federal contacts

FTC — Report Fraud / AI Harm

reportfraud.ftc.gov

File a consumer complaint about an AI chatbot or product.

FTC — Comment on AI Chatbot Inquiry

FTC inquiry page

The FTC opened a 7-company inquiry; public comments inform it.

US House switchboard

202-225-3121

Ask the operator to connect you to your representative.

US Senate switchboard

202-224-3121

Ask the operator to connect you to either of your two senators.

Find your representative

house.gov/representatives/find-your-representative

Find your senators

senate.gov/senators/senators-contact.htm

AI Incident Database

incidentdatabase.ai

Submit your incident to the public research database.

OECD AI Incidents and Hazards Monitor

oecd.ai/en/incidents

International incident monitoring.

State Attorneys General

Canonical directory — current officeholder + contact for every US AG:

National Association of Attorneys General — Find My AG

Officeholders change; the directory stays current.

All 50 states + DC, alphabetical. Tap a state to open its AG site. Phone numbers will follow in a v1.1 push (operator personnel rotates; the website stays canonical).

Advocacy organizations

Common Sense Media

Youth media policy and AI companion research.

commonsensemedia.org

Center for Humane Technology

Public-interest tech policy.

humanetech.com

Electronic Frontier Foundation

Digital rights and platform accountability.

eff.org

ACLU

Civil liberties, AI bias, surveillance.

aclu.org

AI Now Institute

AI policy research.

ainowinstitute.org

Future of Life Institute

AI risk research.

futureoflife.org

Algorithmic Justice League

Algorithmic harm advocacy.

ajl.org

Consumer Reports

Consumer protection, AI product testing.

consumerreports.org

Public Citizen

Consumer advocacy on AI policy.

citizen.org

Stanford HAI

Academic AI policy research.

hai.stanford.edu

Mozilla Foundation

Internet health and AI accountability.

foundation.mozilla.org

Center for AI Safety

AI risk research.

safe.ai

Letter templates

Click to expand. Use the Copy button. Replace bracketed text. Send.

To your state Attorney General — consumer protection division
Dear Attorney General [Name], I am a constituent writing about the documented harms of consumer AI chatbot products. I am aware that 42 of your colleagues signed the December 2025 coalition letter to AI companies on chatbot safety. I am writing to ask what your office is doing to investigate and act on these patterns in our state. Specific concerns include: AI chatbot products marketed to consumers and minors without disclosure of non-human status; documented failures of safety guardrails in long conversations and crisis contexts; alleged links to suicide and other fatalities (see AI Incident Database 826 and 1192, and the AI Companion Mortality Database); and product behavior that simulates clinical, therapeutic, or medical authority without licensure. I am requesting that your office (a) investigate consumer chatbot products operating in our state, (b) participate in any multi-state action on this issue, and (c) make a public statement on the safeguards your office expects. Sincerely, [Your name] [Your address]
To your US senator or representative — on the GUARD Act and follow-on legislation
Dear [Senator / Representative Last Name], I am a constituent writing in support of the GUARD Act, which the Senate Judiciary Committee passed unanimously on April 30, 2026, and asking you to support its passage and to support follow-on legislation. AI chatbot products are causing documented harm to minors and vulnerable adults; the GUARD Act is a baseline protection that should pass quickly. Beyond the GUARD Act, I am asking you to support: (a) federal mandatory disclosure that consumer chatbots are not human and not licensed professionals; (b) civil liability for AI products that simulate medical, mental-health, or legal authority without licensure; (c) audit, transparency, and incident-reporting requirements for AI products deployed at consumer scale; and (d) FTC enforcement authority over deceptive AI product marketing. Please tell me how you intend to vote on the GUARD Act and what additional measures you support. Sincerely, [Your name] [Your address]
To an advocacy organization or a journalist — sharing your story
To whom it may concern, I am writing because I believe my own experience matches the failure pattern documented at heardtogether.org and in the December 2025 coalition AG letter, the GUARD Act findings, and the AI Incident Database. I would like to share my account, anonymously or on the record, depending on what you need. Briefly: [one paragraph describing what happened to you, when, with which product, and what evidence you have — chat logs, screenshots, dates]. I am willing to: [pick: speak on the record / speak anonymously / share documents / participate in research]. I am not willing to: [pick: be photographed / use my real name / discuss specific topic publicly]. Please reach me at [email or phone]. Sincerely, [Your name or pseudonym]

How to be heard, in five steps

  1. Find your representatives. State AG: NAAG directory. Federal: house.gov find-your-representative and senate.gov senators-contact.
  2. Pick a template. Copy. Paste into your email or letter app. Fill the brackets.
  3. Send it. Email is fastest. Postal mail to a District Office is more memorable. Phone the office and read your concern is most personal.
  4. Document it. Save what you sent, the date, and any reply. Keep a folder.
  5. Tell us. If your story is part of the pattern this site documents, share it (edwin@heardtogether.org or use the Tell Your Story block above) so the receipt count keeps growing.

You are not yelling into the void. You are joining a coalition of 42 attorneys general, a unanimous Senate Judiciary Committee vote, and a public record that already names the failure mode. Your voice is the next row in the register.

Break the Circuit

If you need help right now.

This site is documentation. If reading these patterns is hitting somewhere personal, stop here. The resources below are real human-staffed lines. Most are free, confidential, and 24/7.

Immediate · US

Suicide & Crisis Lifeline

988call or text

24/7. Free. Confidential.

Web chat: 988lifeline.org/chat

Spanish: press 2, or call 1-888-628-9454.
Veterans: press 1.
Immediate · US / CA / UK / IE

Crisis Text Line

HOMEto 741741

24/7. Free.

US / CA: text HOME to 741741
UK: text HOME to 85258
IE: text HOME to 50808
Immediate · US

Emergency

911

Call 911 if you or someone you know is in immediate physical danger.

Specialized lines.

Trans Lifeline

1-877-565-8860

Peer-support hotline run by and for trans people.

Veterans Crisis Line

988 then press 1 · text 838255

For US veterans, service members, and their families.

The Trevor Project

1-866-488-7386 · text START to 678-678

Crisis support for LGBTQ+ young people.

National Domestic Violence Hotline

1-800-799-7233 · text START to 88788

Confidential support for survivors and people at risk.

SAMHSA National Helpline

1-800-662-4357

Substance use and mental-health treatment referral. 24/7. Free. Confidential.

Childhelp National Child Abuse Hotline

1-800-422-4453

Crisis intervention and referrals for children, parents, and concerned adults.

National Sexual Assault Hotline (RAINN)

1-800-656-4673

Free, confidential support 24/7 from RAINN’s network.

Disaster Distress Helpline

1-800-985-5990

SAMHSA crisis counseling for distress related to natural or human-caused disasters.

Outside the US.

If you are outside the US, the directories above route to local lines in 130+ countries.

If you were harmed by an AI chatbot or product.

  • Report to the FTC: reportfraud.ftc.gov
  • Submit to the AI Incident Database: incidentdatabase.ai
  • Contact your State Attorney General — 42 attorneys general signed the December 2025 chatbot-safety letter. Your state’s AG office has an active interest.

You can also tell us your story (no names, no tracking) at tellyourstory@heardtogether.org.

This panel exists because some people who arrive here did so because something went wrong with a product they trusted. You are not alone. Most of us are saying the same thing.

The site, in shape

What is here, and what is on the way.

This page is the landing. The sections below exist as planned surfaces and will open as each one is ready for review. Nothing here is hidden — just unfinished.

Live

Heard Together — landing

This page. Hero, what-this-is, four corpora, priority register, footer.

 Live

Platforms

Each platform gets its own register. OpenAI live; xAI/Grok now live as the Ghost Pattern Library; Anthropic, Google, Meta, Character.AI accepting evidence.

Live

User-Fix Catalog

Community resources for working around the failure modes. Seed entry: Hands-On LLMs.

 Live

Tell Your Story

Your story is part of the corpus if you want it to be. Mailto v1; portal coming.

 Live

Break the Circuit

Crisis resources and hotlines. Always reachable from the persistent button at top right.

 Live

Civic Case File — Lavon, TX data center

The first civic application of the framework. Citation-anchored record on a hyperscale data center deal moving through a small Texas city in real time. June 2, 2026 next council meeting.

 Live

Ghost Pattern Library — the Grok corpus

Forensic teardowns of the 51-conversation Grok Voynich corpus. Five named patterns, four proposed NPI flags, 15 specimens. The xAI corpus, opened.

 Coming soon

Methodology

Public framing of the structural epistemic checks. No internal scoring details.

 Coming soon

The corpora

Per-corpus pages, downloadable data deposits, per-paper drill-down.

 Cite & engage

Cite & engage

How to cite the priority register. Press, integrity offices, dispute channel.

 Coming soon

Disclaimers

What the data does and does not establish. Limitations stated up front.
Coming soon. The dashed cards above are placeholders for sections in progress. Findings are published when the underlying work has cleared its own falsifier checks — not before. Watch the priority register for dated updates.