Anthropic's Project Glasswing Enlists Big Tech to Secure Open Source — With an Unreleased Claude Model

Anthropic has assembled the most significant open-source security coalition in years with Project Glasswing — a new initiative that combines commercial resources with a previously unreleased AI model to identify and fix vulnerabilities in critical open-source software.

At the center of Glasswing is **Claude Mythos Preview**, an unreleased Anthropic model that the company says can find software vulnerabilities at a level rivaling all but the most elite human security researchers. Using an unreleased model is notable: it suggests Anthropic is holding back capabilities specifically for high-trust, high-stakes deployments before broader release — a preview of what a "safety-first rollout" looks like in practice.

The $100M in usage credits is structured to give open-source security projects access to Anthropic's models for vulnerability research, while the $4M in direct donations flows to established open-source security organizations. Backers include AWS, Apple, Google, Microsoft, JPMorganChase, and NVIDIA — a rare cross-competitive coalition that signals the industry has agreed software supply chain security is pre-competitive infrastructure.

Project Glasswing arrives at a critical moment: the AI era has exponentially increased the volume of code being shipped, much of it AI-generated, and open-source security tooling has not kept pace. Anthropic is betting that AI can be used to secure the AI-accelerated software ecosystem — with a model powerful enough to actually move the needle. If Claude Mythos Preview can find novel CVEs at scale and coordinate responsible disclosure with maintainers, this could be one of the most impactful AI safety-adjacent deployments of 2026.