Anthropic’s restricted Claude Mythos model may be coming to Claude Code

Anthropic plans to expand access to its Claude Mythos model, a restricted AI system originally announced in April with acknowledged security vulnerabilities. The company appears to be preparing public rollout through Claude Code, its coding interface.

Mythos was initially designated as a restricted model specifically because of security risks it poses to both private and public software systems. Anthropic flagged the model as problematic for software development tasks before limiting its availability. The decision to widen access through Claude Code represents a shift in deployment strategy.

The move raises questions about risk management in AI adoption. Mythos carries documented security concerns that Anthropic previously deemed serious enough to warrant restricted access. Expanding its availability to Claude Code users increases the number of developers who can interact with the model and use it for coding tasks, potentially exposing more organizations to whatever vulnerabilities Anthropic identified.

This development arrives as enterprises increasingly integrate AI coding assistants into development workflows. Security teams have expressed concern about AI models generating insecure code, introducing vulnerabilities, or creating unintended backdoors. Mythos's security issues appear distinct from general coding quality problems, suggesting Anthropic identified specific threat vectors.

The timing and mechanics of the rollout remain unclear. Anthropic has not publicly detailed what specific security risks Mythos poses or what safeguards it plans to implement before broader release. Organizations using Claude Code may see Mythos as an option without understanding the underlying security implications.

Developers and security teams should monitor Anthropic's documentation closely for details about Mythos capabilities, limitations, and recommended use cases. Organizations adopting the model should implement additional code review processes and security scanning before deploying any Mythos-generated code to production environments. The decision to move from restricted to public access underscores the need for enterprise-level oversight of AI-assisted development tools.