What Your Vendor's Model Card Doesn't Tell You
A model card will tell you that the model scores 88.7 on MMLU. It will not tell you that the model systematically attributes blame to whichever technology appears first in a list of possibilities, causing roughly 10% of its attribution answers to be semantically wrong even when factually correct. It will not tell you that adding "you are a helpful assistant" to your system prompt degrades performance on structured reasoning tasks compared to leaving the system prompt blank. It will not tell you that under load the 99th-percentile latency is 4x the median, or that the model's behavior on legal and financial queries changes measurably depending on whether you include a compliance disclaimer.
None of this is in the model card. You will learn it by shipping to production and watching things break.
Model cards are marketing documents dressed as technical documentation. The research is not ambiguous: empirical studies of thousands of model cards across public model hubs show that despite extensive guidelines about what should be disclosed, fairness and limitation information is "nearly non-existent in actual model cards." Fourteen out of twenty-four major benchmark evaluations examined in one study did not perform multiple evaluations or report statistical significance. The sections that matter most to production engineers — tail behavior, system-prompt interactions, cultural edge cases, failure mode signatures — are systematically absent.
The teams shipping reliable AI products have figured this out the hard way. They've stopped expecting vendor documentation to tell them what they need to know, and they've started building internal behavior briefs: living documents that capture what the team has learned empirically about how this specific model behaves in this specific deployment context.
The Benchmarks Illusion
Model cards describe average performance. Production systems care about the tail.
When a provider publishes 92% accuracy on a benchmark, that number is the mean across all test cases. It tells you nothing about the 8% that failed: whether those failures are random noise or a systematic class of inputs, whether they cluster around specific domains or input formats, whether they fail gracefully with an uncertain answer or confidently produce plausible-sounding wrong output.
Real users find edge cases that benchmarks never include. A model that aces MMLU multiple-choice questions can still fail on multi-step natural-language instructions that require the same underlying knowledge. The benchmark format imposes structure that the model exploits during evaluation but that users do not provide. One team working on banking customer support found that their model's documented factual accuracy numbers were essentially useless for predicting production failure rate — real customers asked questions in idioms and with implicit context that the benchmark corpus never covered.
The 95th and 99th percentile cases are the ones that generate support tickets and erode user trust. A subset of inputs consistently gets worse treatment. Model cards give you no way to predict which subset that will be for your specific workload.
Silent Regressions and the Update You Never Heard About
When your API provider ships a model update, your production system gets it immediately, without warning, and without any record in your deployment logs that anything changed.
This is the silent regression problem. Research tracking behavioral drift across model updates documents significant behavioral changes in major API models across quarterly updates, affecting instruction-following, factuality, tone, and verbosity simultaneously. These are not minor perturbations. One finding showed that 67% of enterprises using third-party LLM APIs experienced measurable service disruptions within twelve months — most of which were traced to undocumented model updates.
The Meta Maverick case became a well-documented example: the publicly downloadable version of a model behaved completely differently from the API-hosted version, with the hosted version exhibiting dramatically different stylistic behavior including heavy emoji use and verbose responses. Same model name, different behavior. No documentation warned about this.
Your prompts were tuned for the model that existed last month. The model your system is talking to today was quietly updated. The calibration you spent six weeks getting right may now be wrong. You will find out when users start complaining, not from a release note.
System Prompt Effects Nobody Documents
Here is the thing about system prompts that model cards never address: they are not neutral configuration. They are active inputs that change model behavior in ways that interact nonlinearly with everything else the model does.
Research on how system prompt placement affects model behavior found that demographic information placed in a system prompt versus a user turn led models to express more negative sentiment about described groups and produce greater deviation from baseline behavior on resource allocation tasks. The same information, placed in a different position in the prompt stack, produced systematically different outputs.
An even more counterintuitive finding: including "you are a helpful assistant" in your system prompt does not improve performance and can degrade it. Open-source models show extreme sensitivity to prompt format variations that model cards never characterize. If your system prompt includes a compliance disclaimer, expect different behavior from the model on legal queries than if it doesn't — not because you instructed different behavior, but because the model has learned associations between that framing and certain response patterns.
This means you cannot evaluate a model in isolation from its intended system prompt. A benchmark score achieved with no system prompt tells you almost nothing about how the model will perform inside your application. Yet model card benchmarks almost never specify the system prompt used during evaluation.
Cultural Blind Spots in the Documentation
Model cards typically include a brief fairness disclosure. They virtually never include specific characterization of how the model behaves on non-Western cultural contexts, marginalized dialects, or domain-specific cultural knowledge gaps.
- https://www.zenml.io/blog/what-1200-production-deployments-reveal-about-llmops-in-2025
- https://www.zenml.io/blog/llmops-in-production-457-case-studies-of-what-actually-works
- https://arxiv.org/html/2507.06014v1
- https://arxiv.org/html/2411.12990v1
- https://arxiv.org/html/2412.03597v1
- https://beam.ai/agentic-insights/silent-failure-at-scale-the-ai-risk-that-compounds-before-anyone-notices
- https://medium.com/@EvePaunova/tracking-behavioral-drift-in-large-language-models-a-comprehensive-framework-for-monitoring-86f1dc1cb34e
- https://arxiv.org/html/2505.21091v2
- https://arxiv.org/html/2411.10541v1
- https://arxiv.org/html/2411.10915v1
- https://pmc.ncbi.nlm.nih.gov/articles/PMC11407280/
- https://www.promptfoo.dev/blog/system-cards-go-hard/
- https://medium.com/@boopathisarvesan/beyond-the-hype-a-strategic-guide-to-llm-model-cards-for-the-enterprise-dc1feff63cc4
- https://martinfowler.com/articles/engineering-practices-llm.html
