Auditing MirrorCode

A carefully built benchmark that measures scoped reimplementation and partial recall, sold as autonomous whole-program creation. A receipt for every claim.

MirrorCode (Epoch AI and METR) hands an AI an execute-only binary plus its docs and asks it to rebuild the whole program, graded byte-exact against the reference. Their headline asks: “What’s the largest software project AI can complete on its own?” I ran it through the how-to-audit checklist.

Full audit, re-runnable, with a receipt for every claim: https://github.com/kimjune01/mirrorcode-audit

MirrorCode is a well-built instrument that measures scoped reimplementation from a working oracle, partly via recall of published specs the artifact can’t teach and of these specific programs, and is marketed as autonomous creation.

What it gets right

MirrorCode is better-built than most, on several axes better than the six benchmarks I audited before it. Full credit, sourced.

Some claims outrun the metric

The two recall witnesses

Each carries a re-fetchable receipt. Per-target audit.

What I’d report instead

MirrorCode asks three questions: how large a program, how much faster than a human, and how reliably. Collapsing them into “56%” is the problem. The constructive fix is a preregistered size-by-time-by-success profile. Plot whole-task success and time-to-success against program size, censor failures rather than dropping them, split out contamination, and show uncertainty so the curve can’t imply precision it lacks.

100% 50% 0 whole-task success wall-clock to a full solve (log) small programs medium large Illustrative. Success and time by program size, the shape to report in place of one number. The frontier is a bootstrap band, not a line; bars are Wilson (success) and bootstrap (time) intervals.

Wall-clock is the capability axis, not dollars, since a model’s compute is negligible against a human SWE’s time. The audit can’t build this profile, because the run records aren’t public. So the ask is the smaller one: publish the per-task, per-model results that already sit in the paper as a figure, and validate or dispute the findings against the repo.

Per-target, all 25

The complete read gives every target a verdict and sweeps the full rejection taxonomy from the prior audits: recall, implementation-pinned render, undiscoverable entry point, self-capturing golden, scale, and the non-determinism family. The tally across all 25: 2 recall, 7 scale, 13 clean, 3 private unread.

clean · 13 scale · 7 recall · 2 · brotlid, mailauth private, unread · 3 Every MirrorCode target as one cell, colored by verdict. Everything else is absent in the public set or neutralized by the non-determinism screen and the selection away from reverse-engineering targets. One whole-benchmark caveat remains. Every gold output is the reference's own I/O, a self-capturing oracle with no independent contract check.

One-sided by design

The audit is one-sided by design. It can show a defect, never the absence of one. Every quantitative claim traces to a cited paper section, a public repo file, or a re-runnable script, with per-cell figure reads labeled as such. The recall column is verified from the graded I/O, while the memorization and solve columns are figure reads, exact only in aggregate. Corrections are welcome, and re-derivable against the receipts. MirrorCode is a good instrument for a real capability. It measures a narrower thing than its title, and the narrowing favors the headline.

Disclosure: I applied for a role at Epoch AI, which co-produced MirrorCode, and didn’t get it. This audit uses only public artifacts and is re-runnable, so every claim traces to a cited receipt and stands or falls independent of me. My own check 4 says a producer’s relationships are a conflict when the artifact is asked to be science, and that rule applies to the auditor too.