AI
Copilot CLI security review moves AI code checks to the local diff
GitHub added /security-review to Copilot CLI, shifting AI-assisted security review from the PR queue to the pre-commit diff.
AI
Claude Fable 5 ships with Mythos-class safeguards and pricing
Anthropic released Claude Fable 5 and Mythos 5, splitting the same base model across safeguards, restricted access, pricing, and cloud retention rules.
AI
Anthropic maps 832 malicious Claude accounts to MITRE ATT&CK
Anthropic mapped 832 banned Claude cyber-abuse accounts to MITRE ATT&CK. The risk signal is shifting from skill level to execution orchestration.
AI
ChatGPT Lockdown Mode turns off agent web access for prompt injection defense
OpenAI expanded Lockdown Mode to all logged-in ChatGPT users, limiting web, agent, and file-download paths that can turn prompt injection into data exfiltration.
AI
Claude security harness shows a 7-step path from AI-found bugs to proof
Anthropic released Claude Code skills and a gVisor-based vulnerability discovery harness focused on verification, triage, and patch validation.
AI
Netskope AI Command Center turns MCP servers into security inventory
Netskope AI Command Center discovers AI apps, agents, MCP servers, local models, and data-store links inside enterprise environments.
AI
Salt Code brings MCP policy enforcement into AI coding tools
Salt Code uses MCP to push security policy into Cursor, Codex, Claude Code, and other AI coding assistants before vulnerable code reaches review.
AI
No AI model license, but a 30-day security testing window
Trump’s new AI cybersecurity order avoids mandatory model licensing while creating a 30-day clearinghouse and a voluntary frontier model cyber evaluation path.
AI
Microsoft ASSERT and ACS split agent policy into tests and runtime blocks
Microsoft introduced ASSERT and ACS for agent governance, turning natural-language policy into evaluation artifacts and runtime enforcement points.
AI
Work IQ APIs go GA on June 16 with a Microsoft 365 agent pricing model
Microsoft Work IQ APIs reach GA on June 16. Here is what M365 context, MCP/A2A, delegated auth, and Copilot Credits mean for agent builders.
AI
VS Code Copilot Sessions Add Remote Agents and Terminal Safety
GitHub Copilot’s May VS Code updates bundle Agents Window, remote sessions, BYOK controls, and terminal risk checks.
AI
Anthropic maps 832 blocked accounts to agent attacks MITRE does not yet name
Anthropic Red Team mapped 832 blocked accounts and 13,873 observations to MITRE ATT&CK, exposing gaps around AI agent orchestration.