The Signal — May 10, 2026

The question running beneath this week's biggest AI stories is deceptively simple: who watches the watchers? From superpower diplomacy to safety benchmarks to enterprise deployment, the answer keeps coming back the same — we are building faster than we can verify.

US and China Open First Official AI Dialogue Ahead of Trump-Xi Summit

Earlier this week, the Wall Street Journal reported that Washington and Beijing have agreed to launch formal bilateral discussions on artificial intelligence, the first official AI-specific dialogue between the two governments under the current administration. The talks are set against the backdrop of a planned Trump-Xi summit in Beijing, where AI has been confirmed on the agenda.

The scope of the planned dialogue is broad. According to CommonWealth Magazine, key concerns include autonomous military systems, AI-driven cyberattacks launched by non-state actors (a threat vector that neither government can address unilaterally), and unpredictable behavior from frontier AI models. The framing suggests both sides recognize that AI governance has moved from theoretical discussion into operational territory.

The real weight here lies not in any specific agreement but in the structural fact: two governments that have spent years decoupling their technology sectors are now building a diplomatic channel specifically for AI risk. Whether this channel produces meaningful constraints or becomes another venue for posturing will depend on what happens after the summit.

Sources: Reuters · CommonWealth Magazine · Chosun Biz

METR Finds AI Evaluation Infrastructure Hitting Its Measurement Ceiling

Independent AI safety evaluator METR published results this week revealing a structural problem in AI safety: frontier models have outgrown the benchmarks designed to measure them. The organization's evaluation suite now shows a 50%-time-horizon of at least 16 hours (95% confidence interval: 8.5 to 55 hours), meaning models can sustain productive autonomous work far longer than most evaluation tasks are calibrated to test.

Of METR's 228 evaluation tasks, only five are calibrated at 16-plus-hour difficulty levels. The evaluation infrastructure was designed for a world where AI agents struggled with multi-hour tasks. That world no longer exists, and as The Decoder noted, METR can barely distinguish between models at the frontier because its measurement tools lack the resolution to do so.

This is a meta-problem with immediate practical consequences. If evaluators cannot reliably characterize what frontier systems can do, the entire framework of evaluation-gated deployment — the model safety community's preferred governance mechanism — begins to lose its empirical foundation. The tools meant to inform deployment decisions are themselves falling behind.

Sources: METR LinkedIn · Startup Fortune · The Decoder

OpenAI Publishes Enterprise Safety Playbook for Codex Coding Agent

OpenAI released detailed documentation of the safety architecture underpinning its Codex enterprise coding agent, representing the first major public disclosure of production safety controls for an agentic coding tool. The architecture centers on a "frictionless low-risk, reviewed high-risk" paradigm that attempts to balance developer velocity against the expanded attack surface of autonomous code generation.

The technical specifics include container sandboxing to isolate agent execution, network policies restricting outbound connections, domain allowlists for approved external resources, and agent-native telemetry providing audit trails for every action the system takes. The playbook explicitly addresses the scenario where a coding agent becomes a vector for supply chain attacks or data exfiltration, risks that traditional code review processes were never designed to catch.

The transparency itself matters here. Enterprise customers get a concrete reference architecture rather than vague safety promises, and the broader industry gets a baseline against which competing agentic tools can be measured. Whether the controls are sufficient remains an open question, but the question can now be asked with specificity rather than hand-waving.

Sources: OpenAI · StartupHub.ai · Creati.ai

On the Editor's Desk

Held from this edition: Google DeepMind's UK union recognition (covered May 8), the White House AI Security executive order (covered May 9), continuing coverage of Meta AI employees reporting low morale (covered May 6 and May 9), OpenAI's GPT-5.5-Cyber announcement (covered May 8), Quantinuum's IPO filing (covered May 9), and Anthropic's reported $900B valuation (stale reporting from late April). A busy week in AI governance and corporate maneuvering, but nothing in these stories moved materially since our last coverage.