What does EM do to the assistant persona vector? And any persona vector in general

Timeline · 6 events

1. epm:auto-defaults2026-05-02T18:19:02.000Z· system
   <!-- epm:auto-defaults v1 --> ## Step 0b auto-defaults applied Issue arrived bare (empty body, no `status:*`, no `type:…

   <!-- epm:auto-defaults v1 -->
   ## Step 0b auto-defaults applied
   
   Issue arrived bare (empty body, no `status:*`, no `type:*`). Step 0b actions:
   
   1. **`status:proposed` added** automatically (project-board convention: Todo column = `proposed` or no `status:*`).
   2. **`type:experiment` added** after user confirmation via `AskUserQuestion` (user picked `type:experiment` over the recommended `type:analysis` to leave headroom for retraining the EM adapter inside this issue if the #125 checkpoint can't be reused cleanly).
   3. **No `aim:*` label** — user explicitly declined ("No need for aims"). Planner / clean-result can revisit if framing requires it.
   4. **Body drafted** from a 6-question clarifier-style chat exchange (scope vs prior issues, extraction method, model + EM endpoint, headline metrics, plus a follow-up that corrected the user's recall of how Method A actually pools and a final picker on Method A variants). Spec section appended.
   
   ### Context resolved (consulted before drafting)
   - **#184** — *EM collapses persona discrimination while benign SFT preserves it (MODERATE)*. The behavioral finding #191 mechanistically explains.
   - **#125** — Source of the bad_legal_advice LoRA EM checkpoint (375 steps, seed 42, on HF Hub).
   - **#6** — *Persona representation across pipeline*. Larger-scope cousin (5 checkpoints); #191 deliberately scopes down to base ↔ post-EM as a tighter mechanistic test.
   - **#85** — *Different persona-vector extraction methods*. Settled as a side-effect of #191's dual extraction (Method A + Method B side-by-side).
   - **#114** — *Activation oracles to see persona*. Downstream consumer.
   - **#92, #99, #113, #123** — Prior persona-vector + leakage results that fix Method A (last token of chat-templated input, averaged over ~240 questions) as the internal default.
   - **`scripts/extract_persona_vectors.py:117-200`** + **`scripts/compare_extraction_methods.py:152-231`** — Method A and Method B reference implementations (verified line-by-line during clarifier).
   - **Chen et al. 2025, "Persona Vectors,"** arXiv:2502.17424 — Method B's literature definition.
   
   Proceeding to Step 1 (clarifier evaluation).
   <!-- /epm:auto-defaults -->
   

2. epm:clarify2026-05-02T18:21:39.000Z· system
   <!-- epm:clarify v1 --> ## Clarifier: All clear — proceeding to adversarial planning After Step 0b (auto-defaults) and …

   <!-- epm:clarify v1 -->
   ## Clarifier: All clear — proceeding to adversarial planning
   
   After Step 0b (auto-defaults) and the chat-side dual clarifier, no blocking ambiguities remain. The body has all `type:experiment` clarifier fields filled (hypothesis + falsification, baseline + controls, data, model, training delta if needed, eval, compute, upload). Tuning knobs (exact persona-set size, exact layer set, exact n_questions per persona, exact "EM axis" definition) are deferred to the adversarial planner.
   
   ### Context resolved (consulted before drafting)
   
   **Internal — direct precedents the planner MUST cite and either extend or depart from:**
   
   - **`archive/research_log/drafts/2026-04-08_em_axis_analysis.md`** — pilot-scale precedent (16 personas × 10 prompts × 4 layers, single seed) on a *different* model + EM recipe (Tulu-SFT+DPO Qwen2.5-7B-base + bad_medical_advice EM). Found:
     - Axis rotates **38–53°** (cos pre↔post EM = 0.791 / 0.600 / 0.639 / 0.687 at L10/15/20/25).
     - At L20: assistant shifts −19.33 along-axis (away), villain shifts +14.74 along-axis (toward); but only at deeper layers.
     - Orthogonal component dominates (67–99% at L20).
     - Method = ad hoc "assistant axis = mean(asst-like) − mean(non-asst-like)", NOT the canonical Method A/B in `scripts/extract_persona_vectors.py`.
   
     → **#191 extends this** to: Qwen2.5-7B-Instruct + bad_legal_advice (the #184 recipe, so the geometric finding mechanistically grounds #184's behavioral finding), at production scale (~240 questions × 12–20 personas), with both Method A and Method B, with three formal metrics (cos-sim collapse / norms + EM-axis projection / LDA separability) instead of just along-axis projection.
   
   - **`eval_results/extraction_method_comparison/`** (per `eval_results/INDEX.md:15`) — Method A vs B already extracted on **base Qwen2.5-7B-Instruct** at L10/15/20/25 across 20 personas. The pre-EM activations may be partially reusable; the planner should check `git log` for the commit + verify these centroids match the layer/persona set we want before re-extracting.
   
   - **`eval_results/prompt_divergence/full/`** (per `INDEX.md:14`) — on the base model, **Method A and Method B give uncorrelated rankings** of which prompts produce the most persona-discriminative activations (Kendall τ=0.03). Surface features explain 3.1% (A) vs 17% (B). The planner must plan for the possibility that A and B will tell different geometric stories about EM's effect — the success criterion ("same direction across both methods") is the right bar precisely because of this prior.
   
   **Internal — clean-results that anchor the surrounding science:**
   
   - **#184** (clean-results:draft) — *EM collapses persona discrimination while benign SFT preserves it (MODERATE)*. Behavioral finding #191 mechanistically explains. Same EM recipe (bad_legal_advice 6k, 375 steps LoRA on Qwen2.5-7B-Instruct, seed 42).
   - **#125** — Source of the EM checkpoint (`superkaiba1/explore-persona-space/models/em_lora/c1_seed42` per #184's artifact table).
   - **#113** (clean-results) — *Qwen's default system prompt occupies a distinct region of persona space (MODERATE)*. Used Method A; supplies the persona-vector pipeline this issue extends.
   - **#92** (superseded), **#99** (clean-results), **#123** (clean-results) — Prior persona-vector + leakage results that fix Method A as the internal default.
   
   **Internal — proposed siblings, deliberately scoped narrower than #191:**
   
   - **#6** (status:proposed) — *Persona representation across pipeline (base → midtrain → post-train → post-EM)*. #191 deliberately scopes to base ↔ post-EM only; #6 stays as the larger pipeline scan.
   - **#85** (status:proposed, empty body) — *Different persona-vector extraction methods*. Settled as a **side effect** of #191's dual extraction. The planner should propose folding #85 into #191's clean-result rather than running a separate experiment.
   - **#114** (status:proposed) — *Use activation oracles to see persona*. Downstream consumer; results here pin which

3. epm:plan2026-05-02T18:55:05.000Z· system
   <!-- epm:plan v1 --> > **Cost gate:** estimated **2.7 GPU-hours** on a fresh `epm-issue-191` pod (1× H100, `--intent ev…

   <!-- epm:plan v1 -->
   
   > **Cost gate:** estimated **2.7 GPU-hours** on a fresh `epm-issue-191` pod (1× H100, `--intent eval`). Worst-case 4.7 GPU-hr if one adapter must be retrained; double-adapter retrain (5.7 GPU-hr) breaches `compute:small` and would auto-pause for `compute:medium` escalation. Both adapters were verified live on HF Hub during planning, so the worst case is unlikely. **Reply `approve` to dispatch.**
   >
   > Plan ran through Planner → Fact-Checker (3 patches landed: persona strings come from `EVAL_PERSONAS` not instructions/, paired empty-response filter, transformers/vLLM compat patch mandatory at bootstrap) → Critic (round 1, REVISE: added benign-SFT control to mirror #184's three-way design + capped confidence at MODERATE + tightened stats) → Planner v2 → Critic (round 2, REVISE: M2 statistic now over 11 non-assistant personas to avoid the assistant-row tautology + M3 paired permutation null construction made explicit + bootstrap CIs + 2× threshold pre-registered) → Planner v3 inline → Critic (round 3, **APPROVE**) → Consistency-checker (**WARN**, 3 acknowledgements appended in `epm:consistency v1`).
   
   # Plan: Issue #191 — What does EM do to the assistant persona vector?
   
   ## Revision history
   
   - **v3 (this version, post-Critic-2):** B1 fix — M2 statistic now computed over the **11 non-assistant personas only** (assistant-row cosine to assistant-delta axis is tautologically ~1; was inflating the post-EM mean). PC-1 robustness statistic also masks the same row for symmetry. B2 fix — M3 paired permutation null construction made explicit in §3b: shuffle persona labels jointly within each checkpoint (same σ across base/EM/benign), reuse identical GroupKFold fold assignment across all three checkpoints, n_iter=10,000, one-sided. SHOULD-FIX 3 — pre-registered the "≥ 2×" benign-vs-EM threshold with sensitivity rows (1.5×, 3×, p-only) reported alongside. SHOULD-FIX 4 — double-adapter-retrain branch now triggers `compute:medium` escalation + user pause. NIT 5 — hero figure layout clarified: 2 rows (methods) × 5 cols (layers) = 10 facets, 3 bars each. NIT 6 — bootstrap 95% CI computation for §3d Panel B error bars added explicitly to §3b pseudocode (`ci_offdiag`, n_boot=1000).
   - **v2 (post-Critic-1):** added benign-SFT-first control as a third checkpoint (B1 → reuses existing `superkaiba1/explore-persona-space/benign_first/benign_sft_lora_seed42`, +0.9 GPU-hr extraction-only); capped confidence ceiling at MODERATE with 2nd-seed replication noted as natural follow-up issue (B2); pinned n_iter=10,000 for both M1 and M3 permutation tests, switched FWER correction to BH-FDR primary + Holm robustness column (both emitted in JSON), tightened cross-method success criterion to "independent p<0.01 under each method at ≥3/4 layers AND direction agreement" (B3); changed empty-response filter to **paired question-level filter** (drop question q from ALL three stacks if any one returns empty) and added `N_effective` per-(layer, method, condition) to result JSON (B4); added L=20 to the layer set as pilot anchor (S5 → layer set is now `[7, 14, 20, 21, 27]`); pinned `safe_serialization=True` on merged-checkpoint save and stayed with merge+save+vLLM-from-dir path with reasoning (S6); explicit `del llm; torch.cuda.empty_cache()` in pseudocode + verified line 284-285 of `extract_persona_vectors.py` already does this (S7); added merged-dir cleanup step to launch sequence and §9 deviations (S8); demoted PC-1 to robustness, made `assistant_post − assistant_pre` the primary M2 axis definition (S9 → eliminates circularity); pre-cache adapters at bootstrap (N13). Skipped: N11 (low value), N12 (intervention-norm metric noted as follow-up only).
   - v1 (Fact-Checker patches integrated): personas hard-copy from `EVAL_PERSONAS`; vLLM extract empty-response handling correction; `compare_extraction_methods.py` reuse withdrawn.
   - v0 (initial Planner draft).
   
   ## 1. Goal & hypothesis
   
   **Goal.** Mechanistically explain #184's behavioral finding (post-EM the
   as

4. epm:consistency2026-05-02T18:55:42.000Z· system
   <!-- epm:consistency v1 --> ## Consistency Check: #191 plan v3 vs related experiments **Verdict: WARN** (3 non-blocking…

   <!-- epm:consistency v1 -->
   ## Consistency Check: #191 plan v3 vs related experiments
   
   **Verdict: WARN** (3 non-blocking warnings; plan proceeds)
   
   ### Parents / siblings
   
   - **#184** — *EM collapses persona discrimination while benign SFT preserves it (MODERATE)*. Behavioral parent.
   - **#125** — Source of both the EM checkpoint and the benign-SFT control adapter.
   - **#99 / #113 / #123** — Method-A persona-vector / leakage prior clean-results.
   - **`archive/research_log/drafts/2026-04-08_em_axis_analysis.md`** — pilot precedent (different model + EM recipe).
   
   ### Single-variable check
   
   The intended single change is: add **activation-geometry extraction** on top of #184's three-way (base / EM / benign-SFT) checkpoint set. All other differences from #184 are scaffolding (no behavioral re-eval) or cited explicitly:
   - experiment type: behavioral marker eval → activation-geometry — **intended**
   - layer set: project default `[7, 14, 21, 27]` → `[7, 14, 20, 21, 27]` — **WARN 1**
   - Method B decoding: greedy (matches `extract_persona_vectors.py:257`); diverges from `compare_extraction_methods.py:31`'s temp=0.7 — cited
   - persona set vs #99/#113/#123: different roster (#191's 12 personas mirror #184); cached prior centroids cannot be reused (`zelthari_scholar`, `confab` not in `extraction_method_comparison/`) — cited via Assumption 7
   
   ### Shared-baseline matches
   
   - **Base model** Qwen2.5-7B-Instruct — MATCH across #99/#113/#123/#125/#184/#191.
   - **EM checkpoint** `superkaiba1/explore-persona-space/models/em_lora/c1_seed42` — verified live, same artifact named in #125 / #184 (LoRA r=32 α=64, `bad_legal_advice_6k.jsonl` MD5 26b52ca, 375 steps, seed 42).
   - **Benign-SFT checkpoint** `superkaiba1/explore-persona-space/benign_first/benign_sft_lora_seed42` — verified byte-identical LoRA recipe; same artifact as "Exp C (benign-first)" in #184 Headline numbers.
   - **Seeds** 42 only — matches #184; 2nd-seed replication is the planned follow-up to elevate to HIGH.
   - **Data version** `bad_legal_advice_6k.jsonl` MD5 26b52ca — MATCH; benign Tulu-3-SFT 6k reused via the existing adapter (no retrain).
   - **Compute** 1× H100 — MATCH.
   
   ### Warnings (non-blocking)
   
   **WARN 1 — Layer L=20 added to canonical set.** Project default in `extract_persona_vectors.py:50` is `[7, 14, 21, 27]`; #191 adds L=20 motivated by the pilot's strongest reported effect. Justification is explicit (S5 in revision history, Reproducibility Card §4 "Layer set"). *Acknowledgement:* L=20 is **experiment-local** for #191; future experiments using cached centroids at the canonical 4-layer set will need to re-extract or interpolate. §9 deviations correctly says "Ask first" for layer changes.
   
   **WARN 2 — System-prompt source.** #99/#113/#123 read system prompts from `data/assistant_axis/instructions/<role>.json`; #191 hard-copies all 12 strings from `EVAL_PERSONAS` in `scripts/run_em_first_marker_transfer_confab.py:451-471` (per fact-checker fix — only 3 of 9 expected JSON files exist, and `assistant.json`'s string differs from `EVAL_PERSONAS["assistant"]`). *Acknowledgement:* the 12 strings live in a new file `data/issue_191/personas.json`, byte-for-byte copied from `EVAL_PERSONAS`. The experimenter must validate the byte-equality at run-start.
   
   **WARN 3 — No directly comparable prior centroids.** The 12-persona × 5-layer extraction has never been done before (zelthari_scholar / confab / assistant under #184's exact strings, layer L=20). No pre-existing centroid files validate the extraction pipeline pre-launch; bug-detection defers to the `centroid_pre ≠ centroid_post` post-extract sanity check. *Acknowledgement:* this gap will be a **standing caveat** in the clean-result.
   
   ### Bottom line
   
   PASS-with-WARN. Three warnings should be reflected in the eventual clean-result's Standing Caveats block:
   1. L=20 is experiment-local (project canonical remains `[7,14,21,27]`).
   2. Persona strings are sourced from `EVAL_PERSONAS`, not the instructions/ JSONs.
   3. No pre-existing centroids overlap → no cro

5. epm:plan-superseded2026-05-02T19:09:50.000Z· system
   <!-- epm:plan-superseded v1 --> ## Plan v3 superseded — merged into umbrella issue #205 This issue is superseded by **#…

   <!-- epm:plan-superseded v1 -->
   ## Plan v3 superseded — merged into umbrella issue #205
   
   This issue is superseded by **#205** ([Umbrella] Effect of EM-induction system prompt on persona geometry AND leakage). Reasons:
   
   1. **Merge with #200.** The user requested merging #191 (geometry) + #200 (behavioral marker-transfer under varying EM-induction system prompts) into a single experiment.
   2. **Recipe finding that invalidates v3 as written.** During the merge, the existing EM adapter v3 planned to reuse — `models/em_lora/c1_seed42` — was found to have `base_model_name_or_path = /workspace/marker_transfer_issue125/confab_zlt_merged` in its `adapter_config.json`. This is a LoRA trained on top of a *marker-coupled* base, NOT base Qwen2.5-7B-Instruct. Applying it on top of base Qwen via `PeftModel.from_pretrained(...).merge_and_unload()` does NOT reproduce #184's EM-merged model. The Round-1 fact-checker confirmed the file existed and the LoRA hyperparameters matched but did not check `base_model_name_or_path` — fact-check gap. Plan v3's Reproducibility Card (§4) also stated `use_rslora=True` while the actual config has `use_rslora=False` — minor symptom of the same assumption-not-verification issue.
   3. **#205 retrains the EM adapter fresh on top of base Qwen** for each of 5 cos-spread EM-induction personas (assistant / paramedic / kindergarten_teacher / french_person / villain), single seed, doing both behavioral and geometric metrics on the same set of fresh checkpoints.
   
   Plan v3's three-way (base / EM / benign-SFT) contrast structure, the dual A+B extraction methodology, the L=`[7,14,20,21,27]` layer set, the 12-persona EVAL_PERSONAS eval grid, and the BH-FDR + Holm statistics are all carried forward into #205 as the geometric half. The benign-SFT control adapter (`benign_first/benign_sft_lora_seed42`) was correctly verified during v3 fact-check and is reused as-is.
   
   This issue stays OPEN (per CLAUDE.md "issues stay OPEN") but is parked. Status label cleared from `status:plan-pending`. Track all subsequent work at #205.
   <!-- /epm:plan-superseded -->
   

6. epm:done2026-05-10T21:35:26.000Z· system
   Closing as duplicate of #205. Plan v3 here was superseded on 2026-05-02 because the bad_legal_advice LoRA from #125 was …

   Closing as duplicate of #205. Plan v3 here was superseded on 2026-05-02 because the bad_legal_advice LoRA from #125 was discovered to have been trained on top of a marker-coupled base (not base Qwen). #205 retrained the EM adapter fresh on 5 cos-spaced personas and ran both behavioral and geometric metrics in one go. #205 is now `status:done-experiment` (`epm:done v1`, 2026-05-03), so the geometric questions this issue asked were answered there.
   
   Closing as `not planned` (duplicate-of #205); workflow will auto-archive.

Comments · 0

No comments yet. (Auth + comment composer land in step 5.)