Enterprise Security in the Agentic AI Era

Project Glasswing

5 min read

Project Glasswing

Sources: Anthropic — Project Glasswing · Project Glasswing announcement paper page

Project Glasswing is a coalition initiative announced by Anthropic on May 12, 2026 to apply Claude Mythos Preview — an unreleased frontier model — to defensive vulnerability discovery on the world’s most-critical software. Twelve named partners and 40+ additional organizations participate; Anthropic has committed up to 4M in direct donations to open-source security organizations. The initiative is framed as a 90-day-report cadence preview, with explicit national-security positioning and a longer-term goal of seeding an independent third-party body to coordinate large-scale AI-augmented defensive cybersecurity.

Coalition Partners

Named launch partners (12)

PartnerWiki pageRole / Quote attribution
Amazon Web ServicesAWSAmy Herzog (VP & CISO) — testing Mythos in AWS security operations
AnthropicAnthropicModel vendor; initiative lead
Apple(no wiki page yet)(no public quote)
Broadcom(no wiki page yet)(no public quote)
Cisco(no wiki page yet)Anthony Grieco (SVP & CSTO) — “AI capabilities have crossed a threshold”
CrowdStrikeCrowdStrikeElia Zaitsev (CTO) — “the window … has collapsed”
GoogleGoogleHeather Adkins (VP Security Engineering) — Mythos via Vertex AI
JPMorganChase(no wiki page yet)Pat Opet (CISO) — financial-system framing
The Linux Foundation(no wiki page yet)Jim Zemlin (CEO) — OSS maintainer access
MicrosoftMicrosoftIgor Tsyganskiy (EVP Cybersecurity + Microsoft Research) — CTI-REALM evaluation
NVIDIANVIDIA(no public quote)
Palo Alto NetworksPalo Alto NetworksLee Klarich (CPTO) — “more attacks, faster attacks, more sophisticated attacks”

Additional organizations

40+ further organizations have access to Mythos Preview to “scan and secure both first-party and open-source systems.” The post does not enumerate them; the 90-day public report may.

What Glasswing Partners Get

  • Access to Claude Mythos Preview during the research preview period.
  • Coverage of substantial usage via Anthropic’s $100M usage-credit commitment.
  • Post-preview pricing: 125 per million input/output tokens (Glasswing-participant rates). Available on Claude API, Amazon Bedrock, Google Cloud Vertex AI, and Microsoft Foundry.
  • Information-sharing: partners “to the extent they’re able” share information and best practices with each other.
  • Public reporting by Anthropic within 90 days on lessons learned, vulnerabilities fixed, and improvements that can be disclosed.

Operational Focus Areas

Per the announcement, Glasswing partner work concentrates on:

  1. Local vulnerability detection — finding bugs in partner-owned code.
  2. Black-box testing of binaries — pentest-style coverage where source isn’t accessible.
  3. Securing endpoints — defender-side product enhancement.
  4. Penetration testing of systems — internal adversarial use of Mythos.

Industry-Standards Component

Anthropic commits to “collaborate with leading security organizations to produce a set of practical recommendations for how security practices should evolve in the AI era.” Named candidate areas:

  • Vulnerability disclosure processes
  • Software update processes
  • Open-source and supply-chain security
  • Software development lifecycle and secure-by-design practices
  • Standards for regulated industries
  • Triage scaling and automation
  • Patching automation

Donations

Direct cash donations to open-source security organizations:

  • $2.5M to Alpha-Omega and OpenSSF (via the Linux Foundation).
  • $1.5M to the Apache Software Foundation.
  • Claude for Open Source program — additional access for OSS maintainers via claude.com/contact-sales/claude-for-oss.

National-Security Positioning

Anthropic frames Glasswing as a defensive imperative against state-sponsored threats (named: China, Iran, North Korea, Russia). Explicit language: “The US and its allies must maintain a decisive lead in AI technology.” Anthropic discloses ongoing discussions with US government officials about Mythos’s offensive and defensive cyber capabilities. The long-term proposed structure is an independent third-party body bringing private- and public-sector organizations together.

Wiki Position

Glasswing is the organizing artifact for the wiki’s ai-in-sec-defense and ai-vuln-discovery axes as of May 13, 2026. It supersedes the wiki’s previous treatment of defender-AI as a vendor-by-vendor productized capability with a coalition-backed industrial-scale framing.

Critical context:

  • Glasswing is not a product; it is a coalition initiative. The product (model) is Claude Mythos Preview.
  • Glasswing partners include both AI vendors and AI-adopting enterprises — the model vendor (Anthropic), other AI vendors (Google, Microsoft), CSPs (AWS), security vendors (CrowdStrike, Palo Alto Networks), infrastructure providers (NVIDIA, Cisco, Broadcom, Apple), foundations (Linux Foundation), and financial institutions (JPMorganChase).
  • The Linux Foundation’s inclusion is structurally important — it signals OSS maintainer reach beyond commercial product customers.
  • Microsoft’s MDASH is a Glasswing artifact — Microsoft’s “generally available AI models” silence in the MDASH announcement is explained by coordinated-launch constraints. Mythos is almost certainly one of MDASH’s orchestrated models.

Open Questions

  • The 40+ additional organizations beyond the named 12.
  • Specifics of OSS maintainer access via Claude for Open Source.
  • Per-partner case studies — the 90-day public report should surface some.
  • Government / standards-body engagement beyond the high-level mention.
  • Whether the proposed “independent third-party body” materializes; what its charter would be.
  • How responsible-disclosure timelines align across 50+ partners using the same model on the same codebases.

See Also

Graph View

Backlinks