Rep2Text: Decoding Full Text from a Single LLM Token Representation

Large language models (LLMs) have achieved remarkable progress across diverse tasks, yet their internal mechanisms remain largely opaque. In this work, we address a fundamental question: to what extent can the original input text be recovered from a single last-token representation within an LLM? We propose Rep2Text, a novel framework for decoding full text from last-token representations. Rep2Text employs a trainable adapter that projects a target model's internal representations into the embedding space of a decoding language model, which then autoregressively reconstructs the input text. Experiments on various model combinations (Llama-3.1-8B, Gemma-7B, Mistral-7B-v0.1, Llama-3.2-3B) demonstrate that, on average, over half of the information in 16-token sequences can be recovered from this compressed representation while maintaining strong semantic integrity and coherence. Furthermore, our analysis reveals an information bottleneck effect: longer sequences exhibit decreased token-level recovery while preserving strong semantic integrity. Besides, our framework also demonstrates robust generalization to out-of-distribution medical data.

Key Contributions

• Rep2Text framework: a trainable adapter that projects last-token LLM representations into a decoding LLM's embedding space for autoregressive input reconstruction
• Empirical demonstration that >50% of token-level information in 16-token sequences is recoverable from a single last-token representation across multiple model families (Llama-3.1-8B, Gemma-7B, Mistral-7B-v0.1, Llama-3.2-3B)
• Analysis of an information bottleneck effect: longer sequences show reduced token-level recovery while preserving semantic coherence, and the framework generalizes to out-of-distribution medical text

🛡️ Threat Analysis

Details

Similar Papers