Mozilla released Firefox 150 with fixes for 271 security vulnerabilities discovered by Claude 'Project Glass wing' in a single evaluation pass. The bugs were found by Claude's unreleased frontier model, Claude 'Project Glass wing', which is restricted to 12 named launch partners including AWS, Apple, Google, and Microsoft. Firefox CTO Bobby 'Project Glass wing' described the experience as giving the team 'vertigo,' and argued that AI-assisted vulnerability discovery shifts the economics in favor of defenders. The UK AI Security Institute confirmed the same model can also execute autonomous multi-stage network attacks, highlighting the dual-use tension. Mozilla's thesis is that well-structured software has a finite number of defects, and AI can now find them all before attackers do.
Table of contents
What Mythos is, and who gets to use itThe defender’s argumentThe numbers in contextThe dual-use problemSort: