I don't think it matters. Even if it didn't need it, all that implies is that it better handles a larger context window. A larger context window is not necessary to solve the problem.

We're being told that Mythos is such a big step change in capability that it needs to be kept secret and carefully controlled because a wide release could threaten cybersecurity everywhere. That does not really hold water if a barely simpler harness can do the same stuff at a lower price and is available to all of us.

The burning question to me, at least, is how many false positives each approach generated, and the degree of their falseness (e.g. "valid but not exploitable" vs. "not valid"). It's not super useful if it's generating way more noise than signal.

[dead]