Recent paper calendar for people tracking useful AI shifts.

Big picture

• Agent benchmarks expand to long-horizon, hybrid-interface, and adversarial settings
• Safety and alignment work targets emergent misalignment, compliance, and overconfidence
• Structured evaluation frameworks for tabular, medical, and formal reasoning domains
• Self-evolution and influence-guided training for reasoning improvement

Big picture

• Closed-loop self-evolution frameworks that reuse agent traces for targeted task generation
• Formal modeling and verification of agent workflows using dependent-type languages
• Strategic attack selection as a critical blind spot in agentic AI control evaluations
• A surge of domain-specific benchmarks covering macOS GUIs, drug design, and mathematical research discussions

Big picture

• Long-running / stateful agent evaluation emerges as a core challenge (SentinelBench, CL-Bench, Agents' Last Exam)
• Code-agent benchmarks shift from completion to repository-level tool-use and framework evaluation (TensorBench, ADK Arena)
• Safety and jailbreak detection advance with both system-level guards and multi-modal safety benchmarks (GuardNet, MCBench, SlotGCG)
• New training recipes (GRPO variants, CKA distillation, hypernetwork adapters) promise more efficient and reliable reasoning and control

Big picture

• Agent safety and intervention timing: new benchmarks for AI companion safety and a critical look at LLM-judge-based intervention triggers
• Long-horizon and consequence-aware reasoning: benchmarks for iterative code optimization and compute allocation based on task cost
• Structured skill and memory for agents: graph-based skill protocols, parametric memory for self-evolving agents, and state-grounded skill retrieval
• Cross-domain and multi-modal benchmarks: unified CAD, end-to-end autonomous driving, and cybersecurity vulnerability lifecycle evaluation

Big picture

• Agent benchmarks for high-stakes domains: finance (BigFinanceBench, Hedge-Bench) and clinical software (MedCUA-Bench) show frontier models score below 60%.
• Process-level evaluation gains traction: AgentLens reveals 10.7% of passing SWE-agent trajectories are 'Lucky Passes' that tests miss.
• Resource-efficient evaluation: ProEval uses transfer learning to estimate performance with 8-65x fewer samples; TriEval runs bias/toxicity checks on a laptop.
• Safety and abstention: AgentRedBench cuts indirect prompt injection ASR from 69.9% to 2.4%; a new taxonomy formalizes when agents should refuse to act.

Big picture

• Agent safety and deception detection: SPADE-Bench and TOP-Bench formalize plan-action divergence and tool-orchestration privacy leakage, showing that current agents leak sensitive conclusions at high rates.
• Benchmark evolution and efficiency: BenchEvolver automatically generates harder coding problems from saturated benchmarks, while MIS-based prompt selection reduces evaluation cost without distorting rankings.
• Domain-specific agent evaluation: New benchmarks for smart homes (SMH-Bench), local services (LocalSearchBench), and mobile GUI agents (MobiBench) reveal that frontier models struggle with multi-hop reasoning and ambiguity in vertical domains.
• Process-level diagnosis: AgentProcessBench and AutoMedBench provide step-level scoring of agent trajectories, showing that verification and error-handling stages are the weakest links in long-horizon tasks.

Big picture

• Agentic routing and delegation benchmarks surface fundamental limitations in current orchestration methods
• Long-horizon software development and memory evaluation tasks expose sharp drops in performance as context grows
• Domain-specific benchmarks for healthcare and engineering construction highlight the need for specialized evaluation
• System-level efficiency gains from dynamic layer routing demonstrate progress in adaptive inference

Big picture

• Runtime agent safety is moving from prompt policies to action interception, MCP monitoring, and host-side controls.
• Evaluation is shifting toward process-aware tasks: tool trajectories, delivered artifacts, multimodal verification, and human-validated rubrics.
• Self-improving agents are becoming governed systems with rollback, canary tests, experience graphs, and explicit lifecycle controls.
• Reasoning work is converging on sparse credit assignment: find the decision tokens or reasoning steps that actually steer the answer.

Big picture

• Real-world web agents are getting eval environments that look more like actual SaaS and commerce workflows.
• Agent architecture work is becoming cost-aware: context, hierarchy, reasoning depth, and monitoring are treated as budgeted design choices.
• Formal methods are appearing as runtime guardrails for LLM systems rather than only offline verification work.
• Medical and robotics papers are packaging open systems around concrete downstream workflows instead of generic model releases.

Big picture

• Agent orchestration papers are moving toward explicit graphs, patterns, and inspectable memory instead of one-off prompt chains.
• Education and industrial benchmarks are becoming stronger examples of domain-specific agent evaluation.
• Safety and governance papers are trying to separate the task being performed from the governance process wrapped around it.
• Reasoning papers continue to probe symbolic structure, attributes, and limits of model-based inference.