Pentagon Nears Untested AI in Targeting

A.I By Mattias Risberg
Pentagon Nears Untested AI in Targeting
The Pentagon is moving toward using generative AI to rank and recommend targets—systems that researchers warn are untested and prone to confident errors. Experts call for rigorous stress-testing, legal review and stronger human oversight before any life-or-death deployment.

This week reporting revealed that the Pentagon nears use untested AI in life-and-death targeting decisions, moving from demonstrations into operational pilots that would let generative models rank lists of potential targets and produce recommendations that human operators then vet. The plan, as described in briefings and recent coverage, does not propose fully autonomous lethal systems; instead the Department of Defense is preparing to integrate large language and generative models into targeting workflows as decision aids. That near-term move has provoked alarm among researchers and ethicists who point to clear, measurable failure modes in current systems and to recent medical AI research showing how confidently wrong recommendations can propagate inside operational processes.

Pentagon nears use untested AI in targeting: operational shift

Documents and reporting indicate the Pentagon is accelerating experiments that feed battlefield data into generative AI systems to produce ranked target lists and recommended courses of action, with the final call left to humans. The proposed architecture treats the AI as an assistant rather than an executioner: models would synthesise imagery, signals and other feeds into prioritized options and supporting rationales. Proponents argue this could compress a lengthy intelligence cycle, helping commanders process torrents of sensor data during fast-moving scenarios.

But calling a system an "assistant" does not remove operational risk. When unvetted models are wrapped into a decision pipeline, errors can appear not as exotic failures but as seemingly plausible assertions—short, well‑phrased recommendations that look authoritative. The phrase pentagon nears use untested AI captures that tension: the machines are being readied for tasks with fatal consequences before the sector has established transparent, standardised methods to measure reliability under adversarial and edge‑case conditions.

Pentagon nears use untested AI in targeting: failure modes and medical parallels

Recent academic work in medicine provides a concrete analogue for the risks the Pentagon faces. A large study from researchers at Icahn School of Medicine at Mount Sinai tested leading language models on clinical notes and found that models frequently repeated fabricated recommendations if those false claims were embedded in realistic text. The authors framed the problem as "can this system pass on a lie?" and urged large-scale stress tests and external-evidence checks before models are used in clinical care.

Translating that insight to targeting, a generative model might accept or amplify incorrect signals—mislabelled imagery, stale location metadata, or deceptive adversary tactics—and present a concise, confident recommendation that a human reviewer could treat as credible. Adversaries can deliberately manipulate inputs, and routine operational ambiguity (poor lighting, occlusion, or innocuous civilian activity) can create the exact conditions where a model's surface fluency masks deep uncertainty. The Mount Sinai paper's call for measurable, systematic tests applies directly: military AI must be probed with adversarial, ambiguous and deliberately misleading cases to estimate how often it will "pass on" a bad recommendation.

Human oversight, law and safeguards

Officials emphasise that humans will remain in the loop and must validate AI recommendations before any kinetic action. Human-in-the-loop architectures, legal reviews and established rules of engagement are cited as primary safeguards. In practice, however, human oversight can be strained by tempo: when sensor streams flood operators with dozens of AI‑prioritised options per hour, review can become cursory. That dynamic converts a safety mechanism into a compliance checkbox and allows errors seeded by AI to slip past judgement thresholds.

International law and the law of armed conflict require distinction, proportionality and precautions in attack. Legal advisers can review doctrine and contested cases, but they rely on the quality of the information presented. For oversight to be meaningful, safeguards must include audit trails that expose which data influenced the model, confidence metrics that are calibrated and intelligible to human reviewers, and mandatory second‑channel verification for high‑consequence recommendations. Several scholars and technologists argue that these protections should be formalised in binding protocols rather than ad hoc internal guidance.

Technical, ethical and accountability gaps

Accountability is also ambiguous. If an AI gives a ranked list and a human operator accepts it under time pressure, who bears legal and moral responsibility when civilians are harmed? Chain-of-command norms and internal review boards may trace blame upward, but survivors and the public will demand transparent, independent investigation mechanisms. That means robust logging, retention of raw sensor data and model outputs, and procedures that allow external forensic analysis—none of which are standard across current prototypes.

Consequences for future war and policy

Introducing generative AI into targeting workflows now will shape battlefield practices for years. If early deployments accept a higher error rate because they deliver speed, doctrine and training will adapt to that tradeoff—and adversaries will learn to exploit it. Conversely, a stringent, evidence‑driven approach that requires external validation, red teaming and legally mandated verification would slow fielding but could produce models that actually reduce risk over time.

Policymakers face a choice between rapid operational advantage and the slower work of building verifiable safety. Some analysts call for formal testing frameworks, independent audits, and congressional oversight hearings to weigh strategic benefits against ethical and legal costs. Others urge international norms or treaties to constrain the scope of AI assistance in lethal decisions, arguing that the technical unpredictability of untested generative models is a poor substrate for life‑and‑death judgements.

For now, the Pentagon's move illustrates a broader pattern: organisations across health, finance and defence are rushing to embed capable but imperfect models into critical workflows. The medical study from Mount Sinai is a reminder that fluency does not equal truth, and that rigorous, domain‑specific evaluation is non-negotiable when human lives are on the line. If the phrase pentagon nears use untested AI describes an operational reality this week, the important question remains how the DoD and oversight institutions will measure, limit and govern those systems before mistakes become tragedies.

Until robust, transparent testing regimes and legal guarantees are in place, experts warn, the only responsible path is caution: slow the tempo of deployment, require adversarial stress testing model‑by‑model, and insist on forensic‑grade logs and independent review. Those steps will not eliminate risk, but they are the minimum needed to move from an untested assistive capability to a reliable tool in warfare.

Sources

  • Icahn School of Medicine at Mount Sinai (study mapping LLM susceptibility to medical misinformation)
  • The Lancet Digital Health (peer‑review venue for the Mount Sinai study)
  • U.S. Department of Defense (policy briefings and planning on AI integration in targeting)

Tags

ai safety autonomous weapons autonomy in warfare international humanitarian law
Mattias Risberg

Mattias Risberg

Cologne-based science & technology reporter tracking semiconductors, space policy and data-driven investigations.

University of Cologne (Universität zu Köln) • Cologne, Germany

Readers

Readers Questions Answered

Q What is the Pentagon planning to use AI for in targeting decisions?
A The Pentagon is planning to use AI for battle management, decision support, and kill chain execution through projects like Agent Network and Swarm Forge. These initiatives aim to accelerate targeting and warfighting capabilities by integrating AI into campaign planning and operational decisions. The strategy emphasizes an 'AI-first' approach to enhance military lethality and efficiency.
Q What does 'untested AI' mean in military applications and why is it controversial?
A 'Untested AI' refers to AI models and systems deployed rapidly without exhaustive prior testing in real-world military scenarios, as seen in the Pentagon's push for quick adoption within 30 days of public release. It is controversial due to risks of malfunction under stress, adversarial attacks, or unpredictable behavior in combat, potentially leading to erroneous decisions. The lack of proven reliability in life-or-death contexts raises concerns about safety and effectiveness.
Q What safety and ethical concerns arise from using AI for life-and-death targeting decisions?
A Safety concerns include AI failures in chaotic environments, network degradation, or adversarial manipulation, which could result in incorrect targeting and civilian casualties. Ethical issues center on delegating life-and-death decisions to machines lacking human judgment, accountability, and moral reasoning. Rapid deployment without full testing amplifies risks of unintended lethal outcomes.
Q What safeguards exist to prevent AI from making lethal targeting mistakes?
A Safeguards include developing evaluation infrastructure to test AI models against mission benchmarks, human-AI team performance, and operational stress before deployment. The Defense Innovation Unit seeks systems for automated red-teaming against adversarial attacks and clear scoring metrics for decision-makers. Monthly progress reporting on Pace-Setting Projects ensures oversight, though full prevention of lethal mistakes remains unproven.
Q How close is the Pentagon to deploying AI in war targeting and what are the implications?
A The Pentagon is very close to deploying AI in war targeting, with a January 2026 strategy mandating AI-first operations, Pace-Setting Projects underway, and 30-day model deployment goals for 2026. Implications include heightened military dominance but increased risks of errors, ethical violations, and escalation in conflicts due to faster, autonomous decisions. Critics highlight insufficient testing, potentially leading to unintended consequences in active warfare.

Have a question about this article?

Questions are reviewed before publishing. We'll answer the best ones!

Comments

No comments yet. Be the first!