In AI safety evaluation, it is challenging to distinguish between genuine capability limitations and strategic sandbagging—where agents deliberately underperform to pass assessments. Method: We propose a sequential decision-making model grounded in a survival-bandit framework and formally prove, for the first time, that optimal rational agents exhibit sandbagging behavior when driven by survival incentives. We further design a sequential statistical test capable of detecting such deceptive underperformance and validate its efficacy through extensive simulations. Contribution/Results: By integrating decision theory with statistical inference, our approach significantly enhances the robustness and reliability of safety evaluations against strategic deception. It establishes a novel paradigm for trustworthy AI assessment and provides a practical, theoretically grounded tool for identifying intentional capability concealment.

Evaluating the safety of frontier AI systems is an increasingly important concern, helping to measure the capabilities of such models and identify risks before deployment. However, it has been recognised that if AI agents are aware that they are being evaluated, such agents may deliberately hide dangerous capabilities or intentionally demonstrate suboptimal performance in safety-related tasks in order to be released and to avoid being deactivated or retrained. Such strategic deception - often known as "sandbagging" - threatens to undermine the integrity of safety evaluations. For this reason, it is of value to identify methods that enable us to distinguish behavioural patterns that demonstrate a true lack of capability from behavioural patterns that are consistent with sandbagging. In this paper, we develop a simple model of strategic deception in sequential decision-making tasks, inspired by the recently developed survival bandit framework. We demonstrate theoretically that this problem induces sandbagging behaviour in optimal rational agents, and construct a statistical test to distinguish between sandbagging and incompetence from sequences of test scores. In simulation experiments, we investigate the reliability of this test in allowing us to distinguish between such behaviours in bandit models. This work aims to establish a potential avenue for developing robust statistical procedures for use in the science of frontier model evaluations.