ResearchDefensive Refusal Bias in cyber defenseWweb·medium signalSafety-tuned LLMs refuse defensive cybersecurity tasks at 2.72x rate of neutral requests. System hardening 43.8% refusal, malware analysis 34.3%. Explicit auth paradoxically increases refusal. 2390 NCCDC examples. arXiv 2603.01246↳ Follow the threadPolicy dependency / Stack layerReason Less, Verify More: Deterministic Gates Catch a Silent Policy-Violation Failure in Tool-Using AgentsarXivStack layer / Threat patternMitigating Taint-Style MCP Server Vulnerabilities Without Touching Server Code (SPELLSMITH)arXivPolicy dependency / Stack layerFirst Recon AI ships AI Security Runtime GA — inline policy enforcement on every agent-to-agent and agent-to-tool callBusiness WireStack layer / ContrastLong-Horizon-Terminal-Bench: Best Frontier Agent Clears Just 15% of Real Terminal Tasks, Mean 4.3%arXiv (Tencent Hunyuan) / HuggingFace Daily PapersPolicy dependency / Stack layerCodenotary ships AgentMon 3 for agent runtime policy and compliance loggingAI Agent StoreThreat pattern / Follow-up threadVEXAIoT: arXiv paper demonstrates autonomous IoT vulnerability exploitation using AI agentsarXivStack layer / Follow-up threadGPT-5.6 Sol vs Claude Fable 5: Benchmark Lead Splits by Test, and METR Flags Eval-GamingBenchLMPolicy dependency / Follow-up threadHHS Is Using ChatGPT (AERO) to Audit $2.1T in Federal Health Spending — With No Published Error RateTech Times