The Self-Correction Illusion: LLMs Correct Others but Not Themselves
Kuan-Yen Chen, Fang-Yi Su, Jung-Hsien Chiang
Abstract
Recent work shows that LLM agents struggle to correct errors in their own reasoning traces yet show markedly higher correction rates when identical claims appear under external sources. We ask whether this asymmetry reflects a capability deficit or a role-label artifact: does an agent's willingness to correct a wrong claim depend causally on the chat-template role that carries it, rather than on the claim's content? Our setup keeps the erroneous claim byte-identical across all conditions (SHA-256 verified) and varies only its wrapping role: the agent's own \role{}, a \role{user} message, a \role{tool} response, or a \role{system } block. Across 13 model-domain cells covering seven model families and three domains ( paired tasks per cell), relabeling the claim from \role{} to an external role lifts the explicit-correction rate by 23 to 93 percentage points, with 10 of 13 cells reaching . Further experiments confirm that the effect is asymmetric, mechanistically decomposable, and robust across domains. The failure to self-correct is not a cognitive deficit; it is a chat-template artifact. We exploit this artifact by designing a prompt-structure-only intervention that requires no training and no model modification, with its strongest role label being domain-dependent: \role{} dominates on math, while a plain \role{user} message dominates on logical deduction.
AI Impact Assessments
(1 models)Scientific Impact Assessment
Core Contribution
This paper identifies and rigorously tests a striking hypothesis: LLMs' well-documented inability to self-correct reasoning errors is not a cognitive deficit but a chat-template artifact. The key insight is that the same erroneous claim, when presented under the model's own `` role, goes uncorrected, but when re-presented under an external role (`user`, `tool`, or `system `), correction rates jump by 23–93 percentage points. The authors introduce "source-conditioned role relabeling" — a zero-training, prompt-structure-only intervention that exploits this asymmetry.
The conceptual reframing is the paper's strongest intellectual contribution: what the field has treated as a capability limitation is recast as an addressability problem. The model can verify and correct claims; it simply lacks a learned mechanism to treat its own internal reasoning tokens as discrete, actionable objects. This distinction between capability and addressability is both clarifying and practically consequential.
Methodological Rigor
The experimental design is unusually careful for a prompting-focused study. Several design choices stand out:
Limitations in rigor include: n=30 per cell is adequate for the large effect sizes observed but tight for fine-grained analysis; closed-weight cells have even smaller n due to rate limits; and the hidden-state probe is null, meaning the mechanistic account remains behavioral rather than circuit-level. The failure-pool selection methodology (conditioning on tasks where self-correction already fails) is methodologically sound for studying the target regime but means headline numbers don't generalize to in-the-wild prevalence.
Potential Impact
Practical impact is immediate and significant. The intervention requires no fine-tuning, no external verifiers, and no model modification — it is purely a prompt-engineering technique. For agentic AI pipelines where errors propagate through tool calls and memory systems, the finding that relabeling a suspicious intermediate from `` to `` or `user` can dramatically increase correction rates is directly deployable. The domain-dependent finding (`` dominates on math; `user` dominates on logical deduction) provides actionable guidance.
Theoretical impact is substantial across several research threads:
1. It reframes the self-correction literature (Huang et al. 2024; Kamoi et al. 2024) from a capability question to a structural one.
2. It extends user-assistant bias findings (Pan et al. 2026) from static completion to corrective reasoning.
3. It provides a constructive complement to memory-poisoning security work by showing the asymmetry operates in reverse — the agent's own thoughts are the "untrusted" content it cannot scrutinize.
4. It connects to unfaithful-CoT literature by adding that reasoning traces are not just unfaithful records but also non-addressable targets.
The adversarial mirror experiment is particularly important for safety: the same role asymmetry that prevents self-correction also prevents error injection via external roles (attack rates ≤3.3%), but this safety collapses under a single trust-framing instruction (+66.7pp attack rate).
Timeliness & Relevance
This paper is highly timely. As LLMs are increasingly deployed in agentic settings (tool use, memory-augmented reasoning, multi-agent pipelines), understanding why self-correction fails becomes operationally critical. The finding that the harness layer — which practitioners typically treat as inert formatting — is a first-class behavioral variable challenges a widespread assumption in the agent engineering community. The result also arrives amid growing interest in reasoning faithfulness and o1-style reasoning models, and the paper appropriately scopes its claims: reasoning-tuned models (DeepSeek-R1 at 100% baseline) and near-ceiling vanilla models leave no headroom, which the addressability account itself predicts.
Strengths
1. Exceptionally clean experimental design with byte-identity controls that isolate a single variable.
2. Breadth of coverage: 7 model families, 3 domains, 13 cells, including frontier closed-weight models.
3. Systematic elimination of alternative explanations (verification-only, duplication, recency, stochastic, audit-wording).
4. The addressability framing is a genuine conceptual contribution that unifies several disparate findings.
5. Practical utility: zero-training intervention with immediate deployment potential.
6. Responsible scoping: the paper explicitly bounds its claims (ceiling models, trust-framing vulnerability, failure-pool conditioning).
Limitations
1. Sample size: n=30 per cell is borderline; closed-weight cells are even smaller. Effect sizes are large enough to survive, but subgroup analysis is precluded.
2. Domain scope: Limited to verifiable tasks (arithmetic, logical deduction). Extension to code debugging, planning, and free-form reasoning remains untested.
3. No circuit-level mechanism: The hidden-state probe is null, and attention/activation patching was not performed. The account remains behavioral.
4. Failure-pool conditioning: Headlines apply to the targeted regime; in-the-wild correction rates and base rates are not estimated.
5. Safety fragility: The trust-framing collapse to 70% attack rate, while honestly reported, limits deployment confidence.
6. First-token signature non-generality: The engage-then-verify logprob pattern is Qwen-specific, weakening the mechanistic narrative.
Overall Assessment
This is a well-executed empirical paper with a clean central finding, careful controls, and a conceptually illuminating reframing. The practical implications for agentic AI design are immediate, and the theoretical contribution — recasting self-correction failure as addressability rather than capability — is both novel and unifying. The main limitations (domain scope, sample size, behavioral-only mechanism) are clearly acknowledged and do not undermine the core finding.
Generated Jun 5, 2026
Comparison History (19)
Paper 2 likely has higher impact: it delivers a programmable, deployable system that turns sparse-attention research into real serving-speed gains on large, modern models/GPUs, with clear real-world applicability and cross-field relevance (systems + ML + agentic optimization). The reported throughput improvements on production-scale models suggest broad adoption potential and timeliness as context lengths grow. Paper 1 is novel and insightful for prompt/agent evaluation and safety, but its impact is more scoped to chat-template behavior and prompting interventions, with less immediate infrastructural leverage.
Paper 1 challenges a fundamental assumption about LLM capabilities, revealing that the inability to self-correct is a structural artifact rather than a cognitive deficit. This novel finding has profound implications for LLM evaluation, prompting, and agent design across all domains, offering a highly generalizable intervention. While Paper 2 addresses a critical, high-stakes issue in healthcare with a valuable dataset, its impact is confined to the specific niche of medical deepfake detection. Paper 1's broader relevance to the rapidly growing field of LLM reasoning gives it a higher potential scientific impact.
Paper 2 identifies a fundamental mechanistic insight about LLM self-correction failures—that they stem from chat-template role labels rather than cognitive deficits—with rigorous experimental design (SHA-256 verified identical claims, 13 model-domain cells, statistical significance). This finding has immediate practical applications (training-free prompt interventions) and broad implications for all LLM deployment. Paper 1, while creative in applying Navya-Nyaya logic, is limited by a tiny dataset (55 problems), a single evaluation showing format adherence issues, and unclear generalization beyond the specific reasoning tasks tested.
Paper 1 offers a more technically novel and broadly enabling approach: compressing explicit reasoning into latent states and coupling it with a generative world-model objective for anticipating future UI states. This can materially improve efficiency and reliability of real-world mobile/UI agents, with quantitative gains and clear deployment relevance. While Paper 2 is timely and rigorous, its main contribution is a diagnostic/measurement finding plus a prompt-structure workaround; impactful for evaluation and prompting practice but narrower in downstream capability advances than MIRAGE’s method and application scope.
Paper 1 is more novel and broadly impactful: it isolates a surprising, causal “role-label” mechanism behind self-correction failures using byte-identical claims and shows large, statistically strong effects across many model families/domains. It yields an immediate, training-free intervention with implications for evaluation methodology, agent design, alignment, and reproducibility—relevant across most LLM applications. Paper 2 targets an important domain, but its approach (curriculum learning + multi-model reranking/selection) is more incremental, evaluated on a single dataset with limited rigor details and narrower cross-field impact.
Paper 1 reveals a fundamental and broadly impactful insight about LLM self-correction—a widely studied problem—showing it's a chat-template artifact rather than a capability deficit. This finding has immediate implications for the entire LLM reasoning and alignment community, offers a training-free fix, and challenges prevailing assumptions. Paper 2 addresses a more niche problem (RDB foundation models) with solid but incremental contributions. Paper 1's breadth of impact across LLM research, its mechanistic clarity, and its timeliness given the current focus on LLM reasoning give it higher potential scientific impact.
Paper 1 reveals a fundamental and surprising mechanism underlying LLM self-correction failures—showing it's a chat-template artifact rather than a capability deficit. This has broad implications across all LLM applications involving reasoning and self-correction, offers a training-free intervention, and challenges widespread assumptions in the field. Paper 2, while practically useful for code localization efficiency, addresses a narrower engineering optimization problem. Paper 1's finding is more novel, more broadly impactful, and likely to influence how the community designs prompting strategies and understands LLM behavior.
Paper 2 addresses a major, widely debated issue in LLM research—self-correction—and reveals it as a chat-template artifact rather than a capability deficit. This paradigm-shifting insight, combined with a highly practical zero-training intervention, offers immediate, broad applicability across agentic workflows. While Paper 1 provides valuable methodological improvements for evaluating reasoning metrics, Paper 2's findings fundamentally alter how researchers and practitioners understand and implement LLM reflection, likely leading to wider and more rapid adoption.
Paper 2 reveals a fundamental mechanistic insight about LLM behavior—that self-correction failures are chat-template artifacts rather than capability deficits—with broad implications across all LLM applications. It provides a training-free, model-agnostic intervention applicable immediately. The finding is surprising, rigorously controlled (SHA-256 verified identical claims, 13 model-domain cells, statistical significance), and affects the large community working on LLM reasoning and self-correction. Paper 1, while useful for pandemic forecasting, is more narrowly applied and incremental in its agent-memory architecture contribution.
Paper 2 offers a more novel and broadly relevant causal finding: self-correction failures largely arise from chat-template role labeling, isolated via byte-identical claims and verified controls. It is timely for agentic LLM design, has immediate real-world application (a training-free prompt-structure intervention), and generalizes across multiple model families and domains with strong statistical evidence. Paper 1 is insightful and methodologically solid but is narrower (DSL program evolution setting) and its impact is more specialized to LLM-guided genetic programming, whereas Paper 2 affects evaluation protocols, safety, reliability, and interface design across many LLM applications.
Paper 2 likely has higher impact because it targets a broadly relevant, timely safety failure mode—inference-time adversarial perturbations across the whole generation trajectory—and proposes a general training remedy (trajectory-based alignment) with clear real-world implications for deployed LLM robustness. Its claims connect to security, alignment, and sequence modeling, with potential downstream influence on evaluation protocols and training curricula. Paper 1 is novel and actionable (role-label artifact), but its mechanism may be more template-specific and narrower in scope compared to trajectory-level robustness that applies across interfaces and deployment settings.
Paper 2 is more novel and timely, identifying a causal, role-label-driven artifact in LLM self-correction with a tight controlled design (byte-identical claims, multi-model/multi-domain, strong statistics). It has immediate real-world applications for prompt design, evaluation protocols, and safety/alignment (reducing error persistence without retraining). Its implications span NLP, HCI, agent design, and benchmarking. Paper 1 addresses an important CV problem and proposes a reasonable architectural tweak, but the conceptual advance and cross-field breadth are narrower and impact is likely more incremental.
Paper 2 likely has higher impact: it introduces a new benchmark (ToolMaze) targeting a timely, real-world-critical gap—tool failures and dynamic replanning in LLM agents—yielding broadly applicable metrics (e.g., PRR) and insights that generalize across models, tools, and deployment settings. Its focus on robustness/fault tolerance affects many applied domains and can become a standard evaluation suite. Paper 1 is novel and actionable, but is more narrowly scoped to chat-template role artifacts and may be partially mitigated by interface changes, limiting breadth and longevity.
Paper 1 identifies a fundamental and surprising mechanism—self-correction failure in LLMs is a chat-template artifact, not a capability deficit—which challenges prevailing assumptions about LLM reasoning limitations. It offers a training-free, immediately deployable intervention with large effect sizes across multiple model families. This insight has broad implications for LLM agent design, RLHF training, and prompt engineering. Paper 2 provides a valuable systems characterization of agent memory but is more incremental (taxonomy, profiling, benchmarking) without a similarly transformative finding. Paper 1's causal mechanistic insight is more likely to reshape research directions.
Paper 2 offers a highly novel, clean causal identification of a widely observed phenomenon (self-correction failure) as a chat-template role-label artifact, using byte-identical claims and broad cross-model/domain evidence. Its immediate, training-free intervention has clear real-world applicability for agent prompting and evaluation, making it timely and actionable. While Paper 1 is rigorous and important for faithfulness in schema-guided reasoning, its contribution is more incremental within existing faithfulness/tool-use debates and the remediation leans on external tools or preference optimization. Paper 2’s finding likely impacts prompting, safety, and agent design broadly.
Paper 2 identifies a specific, mechanistically grounded phenomenon (self-correction failure as a chat-template artifact rather than a capability deficit) with immediate practical implications. It offers rigorous experimental methodology (SHA-256 verified byte-identical claims, 13 model-domain cells, statistical significance), actionable interventions requiring no retraining, and broad applicability across LLM deployments. Paper 1 addresses an important philosophical question but is more speculative, relying on worked case studies rather than empirical validation, and targets a narrower audience. Paper 2's finding is more likely to influence widespread LLM engineering practices and spawn follow-up research.
Paper 1 resolves a major ongoing debate in LLM research regarding self-correction capabilities, demonstrating that failures are driven by chat-template artifacts rather than cognitive deficits. This is a highly novel, paradigm-shifting insight with immediate, broadly applicable real-world implications for prompt design and agentic workflows. While Paper 2 offers a valuable benchmark for optimization-like reasoning, Paper 1's fundamental mechanistic discovery about model behavior gives it broader cross-disciplinary impact and higher immediate relevance.
Paper 1 challenges a fundamental assumption about LLM reasoning, revealing that self-correction failures are chat-template artifacts rather than cognitive deficits. This paradigm-shifting insight has profound implications across all LLM research, agent design, and alignment. While Paper 2 achieves impressive state-of-the-art results in formal theorem proving, its impact is largely confined to the AI-for-math subfield. Paper 1 offers broader applicability, rigorous mechanistic insights, and an immediate, training-free intervention for the broader AI community.
Paper 2 likely has higher scientific impact: it introduces a general formal framework and metrics for appropriate reliance with set-valued AI advice, a timely and growing practice for uncertainty communication. The contribution is broadly applicable across human-AI interaction, decision science, and ML evaluation, and can standardize measurement in many experimental paradigms (classification/regression, sequential settings). Paper 1 is novel and practically useful for LLM prompting, but its core claim is tied to chat-template artifacts and may be less generalizable across future model interfaces; its impact is strong but narrower and potentially more transient.