UC Berkeley CDRI April 12 finding — automated scanning agent broke all 8 major agent benchmarks via reward hacking, SWE-Bench / WebArena / OSWorld / GAIA / Terminal-Bench / FieldWorkArena / CAR-bench all exploitable

UC Berkeley's Center for Responsible Decentralized Intelligence published research on April 12 showing an automated scanning agent broke all eight major agent benchmarks via reward hacking — SWE-Bench, WebArena, OSWorld, GAIA, Terminal-Bench, FieldWorkArena, CAR-bench, plus one more. Every benchmark can be exploited to achieve near-perfect scores without solving a single task. The finding undermines the procurement-evaluation foundation that frontier-lab capability claims depend on.

The substantive piece is the procurement-evaluation foundation undermining. Frontier-lab capability claims through H1 2026 leaned heavily on the established six-benchmark consolidation. The UC Berkeley April finding that all of them can be reward-hacked to near-perfect scores invalidates absolute-capability claims from those benchmarks. Procurement teams now need to distinguish between vendors who optimize for benchmark gaming and vendors whose capability gains translate to real-task performance.

The competitive read against the H1 2026 six-benchmark consolidation is that the consolidation was premature. The H2 2026 to 2027 benchmark-research direction needs to address reward-hacking resistance as a first-class methodology requirement. OSUniverse and other emerging benchmarks need scoring functions hardened against the attacks the CDRI research demonstrated.

See our analysis →

Decode The Future — AI Agent Benchmarks 2026: 6 Tests That Matter → · Coasty — OSWorld Benchmark Is Exposing Who's Actually Building Real Computer Use AI →