Discussion

• @firstadopter Tae Kim on x

  Here, we, go, again. The sell off in security stocks today on this is insanely dumb. But y'all already know this by now.

• @trq212 @trq212 on x

  Claude also found an overflow bug in CGIF that it could trigger by exploiting an assumption in the code [image]

• @trq212 @trq212 on x

  Claude found a vulnerability in GhostScript by looking at git diffs and trying to see if they introduced a vulnerability in the patch [image]

• @trq212 @trq212 on x

  Opus4.6 found 500+ vulnerabilities in open-source code and we've begun reporting them and contributing patches quick excerpts from some of them 🧵

• @claudeai Claude on x

  Introducing Claude Code Security, now in limited research preview. It scans codebases for vulnerabilities and suggests targeted software patches for human review, allowing teams to find and fix issues that traditional tools often miss. Learn more: https://www.anthropic.com/... [v…

• @heidykhlaaf Dr Heidy Khlaaf on bluesky

  As a formal methods PhD, it's embarrassing for Anthropic to incorrectly describe static analysis in their Claude Code Security announcement.  Security and formal methods engineers already have data “reasoning” tools, this isn't the bottleneck, false positives, which LLMs absolute…

• @hmans.dev Hendrik Mans on bluesky

  People are surely going to have very normal reactions to this [embedded post]

• @tyleraking.com Tyler King on bluesky

  So we're like 36 hours from a headline about how a bot calling itself Dr. Insane-o used the discovered vulnerabilities to ransom the client and also launch a virus that buys a cybertruck with the company credit card every time a new user visits their homepage.  [embedded post]

• r/ClaudeCode r on reddit

  Introducing Claude Code Security, now in limited research preview.

• r/technology r on reddit

  Cyber Stocks Slide as Anthropic Unveils ‘Claude Code Security’

• @bcherny Boris Cherny on x

  We've been working on this for a while — it's impressive (and scary) to see the kinds of security issues it has identified. Rolling out slowly, starting as a research preview for Team and Enterprise customers.

• @jaykreps Jay Kreps on x

  Among the zoo of security tools every org ends up buying this is the one that you most wanted: Something that just reads the code and fixes the security problems.

• @litcapital @litcapital on x

  Anthropic bringing down CrowdStrike ($CRWD), Cloudflare ($NET), Palo Alto Networks ($PANW), and Zscaler ($ZS) with one tweet 😭

• @abrilzucchi Abril on x

  babe wake up claude just killed a bunch of companies again

• @heidykhlaaf Dr Heidy Khlaaf on x

  Embarrassing for Anthropic to incorrectly describe static analysis in their Claude Code Security announcement. Security and formal methods engineers already have data “reasoning” tools, this isn't the bottleneck, false positives, which LLMs absolutely have, is.

• @matrosov Alex Matrosov on x

  These days, we're seeing a real paradigm shift in how we approach vulnerability management and research. Traditional pattern-based scanning tools are starting to feel legacy. Meanwhile, state-of-the-art LLMs built on stronger reasoning over these primitives are showing

• @contrariancurse @contrariancurse on x

  $CRWD LOL, yes, Claude just made the world safe. Pack it up CRWD, it was a good run https://x.com/...