Sources
Anthropic's Mythos Finds Real Curl Vulnerability — But Only 1 of 5 Claimed, Underperforms Previous AI Scanners
Daniel Stenberg reports that Anthropic's Mythos claimed five 'confirmed security vulnerabilities' in curl, but investigation reduced this to a single severity-low genuine flaw scheduled for disclosure with curl 8.21.0 in late June. Three were documented API features and one was a non-security bug. Previous AI scanners (AISLE, Zeropath, Codex Security) had collectively triggered 200-300 bug fixes over 8-10 months, making Mythos's contribution modest despite heavy marketing.
↳ Follow the thread