Document-Editing Agents Have a Corruption Problem, and the Field Is Ignoring It

10. Document-Editing Agents Have a Corruption Problem, and the Field Is Ignoring It

An arXiv paper posted in late April 2026 is circulating fast on Hacker News (209 points as of May 7), and the finding is uncomfortable: when users delegate document editing to LLM agents, those agents introduce systematic corruption. The paper tests multiple LLMs across realistic document-editing tasks and finds that models consistently alter content beyond the stated instruction scope, drop context, and introduce factual drift. The problem is not edge-case failure. It is a repeatable pattern tied to how autoregressive models handle long, structured documents during multi-step agentic execution.

This lands at a bad moment for the agent-as-editor category. Notion AI, Google's Workspace Duet, and Microsoft 365 Copilot have all shipped document-editing agents in the past 18 months, with each marketing the ability to "rewrite," "improve," or "restructure" documents on behalf of the user. None of those products surface corruption risk in their UX. The paper's findings suggest that trust is being extended faster than reliability has been established. Teams building on top of OpenAI's Assistants API or Anthropic's tool-use layer to automate document workflows now have a documented failure mode they cannot dismiss as anecdotal.

The broader pattern is that agentic product development has outrun agentic evaluation. Benchmarks for document agents still measure task completion, not fidelity to the original artifact. That gap will close, either through research pressure like this paper or through a visible production failure that forces the issue publicly. Builders shipping document-editing agents should read this as a prompt to add explicit diff-based output auditing and constrained editing scopes before the category's credibility takes a public hit.

Source: LLMs Corrupt Your Documents When You Delegate