Theo Bearman

Two things stand out to me here: 1) The title of Annex A (the list of approved entities who can now access Mythos 5 again) is “Anthropic US Entities - Approved”. It appears that no foreign entities, including UKAISI for example, have been granted access to Mythos 5 again as it stands. 2) Anthropic foreign national employees can now access Mythos 5 again. This is an important result, allowing all relevant members of the Anthropic team to resume using frontier AI capabilities for security work (and more besides - but that’s what I care about most!).

Anthropic backing proposed Massachusetts AI legislation that builds on SB53, SB315 and RAISE by requiring companies retain independent evaluators to look for potential catastrophic risks and provide updates at least every six months plus provisions for the state attorney general to seek court orders to enforce the law’s requirements.

OpenAI gave METR early access to GPT-5.6 Sol for testing including raw chain-of-thought, a railfree version of the model, and internal information about the model. With this access, METR conducted a pre-deployment evaluation of GPT-5.6 Sol, including an attempted measurement of its 50%-Time Horizon. However, the measurement depends heavily on our treatment of cheating attempts, and GPT-5.6 Sol’s detected cheating rate was higher than any public model we have evaluated.

"We’ve now started using a method for simulating model deployments before they happen... We have already used insights... to identify blind spots in traditional evaluations and inform mitigations and deployment decisions... we expect it [Deployment Simulations] to play a larger role in the future model development process."

I realize folks are focused this week on the current export-control directive affecting Anthropic, but there has also been a development on the Hill that would affect one of the statutes used to designate Anthropic as a supply chain risk. The Senate and House FY27 NDAA drafts are out, and both would amend 10 U.S.C. § 3252 by adding procedural and evidentiary guardrails to DoD’s supply chain risk authority. Both also bar the use of that authority as leverage in contract disputes or negotiations. Senate: https://t.co/ojCs4Frr8G House: https://t.co/AS4pCnBB14

ByteDance has generally been Microsoft’s biggest AI customer in recent years, largely using OpenAI models. OAI have complained to Microsoft that they don’t do enough to prevent distillation. Microsoft should’ve stopped offering frontier American models in China yesterday. Madness!

Lots to digest in the Fable system card but this stands out to me more than anything else: Anthropic cannot clearly and obviously rule out that the model breaches the more serious CB-2 threshold yet maintain the existing ASL-3 security controls and state that "a highly sophisticated and well-resourced state threat actor, if they made a determined attempt, could have a significant chance of accessing unsafeguarded Mythos 5 biological capabilities (e.g. via theft of model weights)." As I discussed in my Substack post a few weeks ago, a lot more needs to be done on AI security controls and fast. https://t.co/wGTrN20Gg2

Precisely as I predicted, the recent cyber EO, which admin officials insisted was not a licensing regime, ends up in practice being a licensing regime. Forget “voluntary,” forget “permissionless.” AI is licensed now, but the requirements change constantly and are always a secret, even to the administration itself, which will discover the rules spontaneously in real time as it reacts to events. This means also that the rules are in practice stricter and more roughly enforced for organizations the administration does not like. Can you blame Anthropic for making itself so disliked? In a sense, sure. The problem is that this childish “he said, she said” is all we have to go on in our analysis of the situation. And because there is no transparency (it is all calls and texts between “White House officials” and “Anthropic executives”), in practice it comes down to who you trust more. This is why we create laws! To abstract away from personal power struggles and grudges, to submit to the steady application of rules so that complex human activity can unfold with predictability. The rule of law has been being eroded in the U.S. for my entire life, but it is especially acute in AI because of both the lack of much preexisting law to serve as bulwark, and because of this admin’s insistence that it is Not Regulating AI. This has become an excuse for vagueness and evasiveness in rule-drafting (see the cyber EO), and this in turn makes the lawlessness worse. The government wants to apply its force to frontier AI, that much is clear. It wants to make the industry submit. And in service of that goal, it has discovered that “not regulating AI” is in fact a great excuse for refusing to support laws that could constrain the admin’s exercise of power. In other words, “not regulating AI” is a *justification* for the tyrannical control of AI by the state. This should alarm you regardless of what party you are in. What you are seeing now will be used against you one day soon, if not by this admin then by its successors. This is the antithesis of the rule of law. The administration cannot and will not fix this problem alone. We need Congress to step in and impose rules on this mess.