AI/ML Anthropic opens Claude Security public beta for code audits May 1, 2026 Share By SC Staff (Credit: ardasavasciogullari – stock.adobe.com) Anthropic has launched Claude Security into public beta, a dedicated defensive tool powered by its flagship Opus 4.7 model that scans entire codebases for vulnerabilities, generates verified patches, and traces data flows across components rather than relying solely on known attack pattern matching, SiliconANGLE reports. The capability, now part of the Claude Enterprise subscription tier following a research preview that began in February, reasons "similarly to the way a cybersecurity researcher does," according to the company, examining interactions between code files and synthesizing network effects before assigning confidence ratings to each finding. Anthropic has attracted integration commitments from major cybersecurity vendors who will embed Opus 4.7 into their platforms. The tool provides explainability alongside its triage, documenting reasoning, exploitability likelihood, and fix effectiveness, and allows users to apply patches directly within a Claude Code session without the traditional days-long back-and-forth between security and engineering teams. Building on the momentum of the earlier Project Glasswing initiative, which leveraged the company's Mythos model for vulnerability discovery across critical software, the public beta adds scheduled scanning for continuous coverage, documented dismissal reasoning for future auditors, and export compatibility with existing audit infrastructure. An In-Depth Guide to AI Get essential knowledge and practical strategies to use AI to better your security program. Learn More SC Staff Related AI/ML Google: Addressing max severity Gemini CLI bug may require further action SC Staff May 1, 2026 Despite already issuing fixes for a maximum severity vulnerability in its Gemini CLI tool, Google has warned that organizations leveraging the command-line AI tool through GitHub Actions, or in headless mode, may have to perform additional actions to avoid breaking their CI/CD workflows, The Register reports. Vulnerability Management 5 ways to close the ‘exploitability gap’ Steve Carter May 1, 2026 Here’s a plan for strengthening the company’s vulnerability management program. Supply chain Illicit AI-assisted commit-linked npm dependency compromises crypto wallets SC Staff May 1, 2026 Illicit AI-assisted commit-linked npm dependency compromises crypto wallets North Korean state-backed threat group Famous Chollima, also known as APT37 and Reaper, has published the malicious @validate-sdk/v2 npm package purporting to be a validation tool, which is associated with a code commit co-authored by Anthropic's Claude Opus model, to breach cryptocurrency wallets as part of the PromptMink campaign that has been underway for the past seven months, according to Infosecurity Magazine. Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe You can skip this ad in 5 seconds