← All articles

What Is Project Glasswing? Anthropic's Defensive AI Initiative Explained for B2B Buyers in 2026

By Asaf Katz · July 2, 2026

QUICK ANSWER

Project Glasswing is Anthropic's controlled-access program that provides scoped access to Claude Mythos to leading organizations for defensive cybersecurity purposes. Partners include AWS, Apple, Google, Microsoft, NVIDIA, CrowdStrike, and the Linux Foundation, backed by $100M in compute credits. For enterprise AI buyers and cybersecurity vendors, understanding Project Glasswing explains why Claude Mythos was never publicly released.

What Is Project Glasswing?

Project Glasswing is a defensive cybersecurity initiative launched by Anthropic alongside Claude Mythos on April 7, 2026. It provides controlled, scoped access to Claude Mythos, Anthropic''s most capable AI model, to a consortium of leading organizations for defensive security purposes.

Rather than releasing Claude Mythos publicly, Anthropic chose to limit access to vetted organizations that can use the model''s advanced capabilities to defend systems, not attack them.

Why Anthropic Created Project Glasswing

Claude Mythos is described by Anthropic as capable of autonomously discovering and chaining exploits across every major operating system, web browser, and critical software stack. The model can find and weaponize zero-day vulnerabilities faster than human security researchers.

This capability profile presents an obvious dual-use risk. A model that can find vulnerabilities faster than defenders can patch them, in the wrong hands, is a threat multiplier.

Anthropic''s response was to treat Claude Mythos like a controlled substance: restrict access to vetted defensive users rather than releasing it into a market where offensive actors could access it freely.

Project Glasswing is the governance structure for that restricted access.

Who Are the Project Glasswing Partners?

The announced Project Glasswing partners include:

Anthropic provided $100 million in compute credits to support partner use of Claude Mythos within the program. Partners receive scoped API access designed for specific defensive use cases, not general deployment.

What Project Glasswing Partners Can Do With Claude Mythos

Access within Project Glasswing is scoped to defensive applications. Partners can use Claude Mythos to:

The program is explicitly defensive. Anthropic maintains audit and governance layers over how partners use Mythos capabilities.

What the June 2026 Export Control Directive Changed

On June 12, 2026, Anthropic suspended access to both Claude Fable 5 and Claude Mythos 5 following a US government export control directive. The directive has not been published in full, but the effect is that even Project Glasswing partners lost access to the Mythos 5 model tier.

This represents a significant escalation in government oversight of frontier AI models with cybersecurity capabilities. It is the first time the US government has used export control mechanisms to restrict access to a commercially developed AI model.

What Project Glasswing Means for Cybersecurity Vendors

The Defensible AI Security Market Is Real and Growing

Project Glasswing validates a market: enterprise organizations need AI-powered defensive security capabilities and are willing to work within controlled-access governance structures to get them. Cybersecurity vendors that position inside this market, offering AI governance, red team services, evaluation frameworks, or compliance tooling for AI-powered security operations, are addressing real and growing demand.

The Claude Compliance API Is the Commercial Layer

Alongside Project Glasswing, Anthropic''s Claude Compliance API connects Claude to 28 enterprise security platforms including CrowdStrike, Palo Alto Networks, Okta, and Zscaler. This commercial layer makes Claude''s security capabilities accessible without the restricted Mythos 5 tier.

Cybersecurity vendors building on or selling alongside the Claude Compliance API have a strong event topic: what these integrations mean for enterprise security operations in 2026.

The Export Control Directive Creates a Conversation Trigger

Any enterprise account that was evaluating or using Mythos 5 within Project Glasswing is now dealing with a disruption. That is a live buying signal for AI governance tools, model-agnostic workflow platforms, and enterprise AI resilience consulting.

LinkedOtter runs live events that turn moments like this into pipeline. Take the free 60-second check to see if event-led outbound fits your cybersecurity growth program.

Frequently asked questions

What is Project Glasswing?

Project Glasswing is Anthropic's controlled-access defensive cybersecurity initiative launched April 7, 2026 alongside Claude Mythos. It provides scoped access to Claude Mythos to vetted organizations including AWS, Apple, Google, Microsoft, NVIDIA, CrowdStrike, and the Linux Foundation for defensive security purposes only.

Why did Anthropic create Project Glasswing instead of releasing Claude Mythos publicly?

Claude Mythos can autonomously discover and chain zero-day exploits across major operating systems and software stacks. Releasing it publicly would create offensive risk. Anthropic chose to restrict access to vetted defensive users through a governed program rather than let the model reach the open market.

Who are the Project Glasswing partners?

AWS, Microsoft (Azure), Google Cloud, NVIDIA, CrowdStrike, Apple, and the Linux Foundation. Anthropic provided $100 million in compute credits to support partner use within the program.

How did the June 2026 export control directive affect Project Glasswing?

On June 12, 2026, Anthropic suspended access to Claude Fable 5 and Claude Mythos 5 for all customers, including Project Glasswing partners, following a US government export control directive. This was the first use of export control mechanisms against a commercially developed AI model.

What does Project Glasswing mean for cybersecurity vendors?

Project Glasswing validates the market for AI-powered defensive security tools and services. Cybersecurity vendors selling AI governance, red team services, model evaluation frameworks, or compliance tooling for AI-augmented security operations are addressing a market that the US government and major cloud providers are investing in directly.

What is the Claude Compliance API and how does it relate to Project Glasswing?

The Claude Compliance API is the commercial layer of Claude's enterprise security capabilities. It connects Claude to 28 security platforms including CrowdStrike, Palo Alto, Okta, and Zscaler without requiring access to the restricted Mythos tier. It is available to all enterprise customers and is the primary path for cybersecurity vendors building on Claude.

Related

Take the free 60-second check