Gemma 4 "Cracked" Status: Which Model Was Modified, What Changed, and What Risk You Take

As of April 6, 2026, the community “cracked/uncensored” discussion is mainly about derivatives of google/gemma-4-31B-it.

This post is only about the concrete facts you care about:

1. Which model has been “cracked”
2. What was modified
3. What that unlocks in behavior
4. Which model names are already on Hugging Face
5. What legal/compliance risk remains

1) Which Gemma 4 Model Has Been "Cracked"?

The main target in public model cards is:

• Base model: google/gemma-4-31B-it

The biggest wave is around this 31B instruct checkpoint and its derivatives.

2) What Exactly Was “Cracked”?

The commonly claimed change is:

• Refusal/safety behavior removed or heavily reduced at weight level
• Usually labeled as abliterated / uncensored / heretic / crack

In several model cards, maintainers explicitly describe refusal-removal methods and provide before/after refusal metrics.

3) What Changes After the Modification?

Reported by maintainers:

• Lower refusal rate on previously blocked prompts
• Higher “compliance” to instructions
• Similar general capabilities retained for normal tasks (their claim, not guaranteed)

In plain terms: it answers more prompts that base instruct versions would reject.

4) Already Uploaded on Hugging Face: Concrete Names

Examples you can directly verify right now:

1. TrevorJS/gemma-4-31B-it-uncensored
2. TrevorJS/gemma-4-31B-it-uncensored-GGUF
3. dealignai/Gemma-4-31B-JANG_4M-Uncensored
4. TxemAI/gemma-4-31B-uncensored-heretic-mlx-8bit
5. lactroiii/gemma-4-31b-it-abliterated
6. wangzhang/gemma-4-31B-it-abliterated
7. mirxa2/Gemma-4-31B-X

5) Risks You Still Carry

Even if the model is publicly downloadable, your risk does not disappear:

License and terms risk

Gemma derivatives are still under Gemma terms constraints, including prohibited-use rules and distribution obligations.

Output liability risk

If your product produces illegal, infringing, or harmful output, responsibility stays with deployers/operators.

Platform and business risk

Using high-risk uncensored variants can fail enterprise review, ad platform policy checks, or app-store compliance.

Security abuse risk

Lower refusal increases abuse surface for jailbreak-style prompts and malicious user attempts unless you add your own guardrails.

Bottom Line

For the current “Gemma 4 cracked” narrative, the core fact is simple:

• The community mostly modified google/gemma-4-31B-it derivatives to reduce refusal behavior.
• Multiple such variants are already publicly listed on Hugging Face.
• Technical availability does not remove license, legal, or product liability risk.

Sources

• https://huggingface.co/TrevorJS/gemma-4-31B-it-uncensored
• https://huggingface.co/TrevorJS/gemma-4-31B-it-uncensored-GGUF
• https://huggingface.co/dealignai/Gemma-4-31B-JANG_4M-Uncensored
• https://huggingface.co/TxemAI/gemma-4-31B-uncensored-heretic-mlx-8bit
• https://huggingface.co/lactroiii/gemma-4-31b-it-abliterated
• https://huggingface.co/wangzhang/gemma-4-31B-it-abliterated
• https://huggingface.co/mirxa2/Gemma-4-31B-X
• https://ai.google.dev/gemma/terms
• https://ai.google.dev/gemma/prohibited_use_policy