CURL has been scanned with multiple LLMs. Mythos was last and as a result found only 1 issue. If Myhos was really much better I'd expect it to find a lot more issues despite the others already there.

Also, the competing models are getting better. Opus 4.5 was better than everyone else when it was new, but only a few months later and there are a lot of models that are better (not just the newer Opus models)

▲

lmc 10 hours ago | parent | next [-]

Curl had a prominent bug bounty programme, has 180k lines of prod code, and is mainly a client app/lib. I would look at other projects before making judgements about mythos on this one.

▲

dogleash 7 hours ago | parent [-]

Don't you want to test mythos against state of the art projects? They are the best chance of making visible what mythos uniquely brings to the table.

We already know that mythos will be branded catnip for sub-SOTA projects. They could have build SOTA secure software development practices last week, last month or last year. But didn't care. What will their experience with mythos tell us other than AI hype can create corporate will to take security seriously?

	▲	lmc 6 hours ago \| parent [-]
		> Don't you want to test mythos against state of the art projects? Yes, I'm just saying don't make judgements based on this single project alone.

▲

preommr 11 hours ago | parent | prev [-]

Is the CURL thing mostly from the primagen video, or did it break into the greater social media sphere and I just missed it?

	▲	swingboy 10 hours ago \| parent \| next [-]
		The cURL lead developer posted about it: https://daniel.haxx.se/blog/2026/05/11/mythos-finds-a-curl-v...
	▲	alt227 10 hours ago \| parent \| prev \| next [-]
		The Reg reported it: https://www.theregister.com/security/2026/05/11/anthropics-b...
	▲	bluGill 10 hours ago \| parent \| prev [-]
		I've been following him on mastodon and read it right there