Project Glasswing and open source software: The good, the bad, and the ugly

Opinion Anthropic describes Project Glasswing as a coalition of tech giants committing $100 million in AI resources to hunt down and fix long-hidden vulnerabilities in critical open source software that it's finding with its new Mythos AI program. Or as The Reg put it, "an AI model that can generate zero-day vulnerabilities."

Oh boy! Just what we needed. Not just AI security bug slop, but automated, dedicated AI security bug slop!

While Anthropic claims its Claude Opus 4.6 can barely find zero-days, Mythos Preview can pop up working exploits 72.4 percent of the time. It's a good thing Anthropic has limited its use for now; if it lives up to its hype, Mythos would crash the internet in a day.

Project Glasswing is generously offering free access to Mythos Preview, which Anthropic claims "surpasses all but the most skilled humans at finding and exploiting software vulnerabilities ...