Anthropic moved Claude Mythos out of the April 2026 Project Glasswing partner preview into general availability in early June 2026 as Claude Mythos 5. The release puts a frontier model with distinctive cybersecurity capability into enterprise tier subscriptions, with the most material brand-visibility consequences flowing through vendor risk assessments and procurement workflows.
What ships in Mythos 5
Mythos 5 is positioned as the cybersecurity-aligned sibling to Claude Opus 4.7. The model carries step-change improvements over Opus 4.7 on competition math, GPQA Diamond, and SWE-bench Verified per Anthropic's reported benchmarks, with the distinguishing capability axis on cybersecurity: vulnerability detection, exploit reasoning, SBOM analysis, and packaged-software auditing.
Context window is 200,000 tokens standard, matching the 4.x Opus family. Extended-context variants remain under evaluation but are not confirmed at general availability. Pricing carries a premium over Opus 4.7, with preview-pricing data suggesting roughly 1.4x to 1.8x per token; final tier pricing has not been published.
Access is staged across enterprise tiers first, with Pro tier following, broader Claude.ai availability with rate limits, and AWS Bedrock and Google Cloud Vertex AI rolling out through Q3 2026. Microsoft Foundry availability date is not announced.
The procurement-workflow effect
The single most consequential thing about Mythos 5 is not the model itself but where it gets used. Enterprise buyers will run Mythos 5 against vendor risk assessments, security posture audits, SBOM analyses, and CVE histories. When a procurement function asks Claude "is this vendor safe to integrate," the answer will increasingly come from Mythos 5.
Brands flagged by Mythos 5 as low-trust face a compounding penalty. Unsigned releases, missing SBOMs, unresolved CVEs, opaque disclosure histories, weak supply-chain transparency, and poor incident communication all surface to Mythos 5 as red flags. Once flagged, the assessment propagates: procurement passes it to security, security passes it to risk, risk passes it to the buying committee.
Brands with strong public security posture (published SBOMs, signed releases, transparent disclosure histories, current SOC 2 attestations, clear incident communication) gain disproportionate advantage in Mythos-driven workflows.
Security-posture signal checklist for Mythos 5 visibility
| Signal | Why Mythos 5 surfaces it | What to publish |
|---|---|---|
| SBOM availability | Mythos 5 cross-references SBOMs against CVE databases | SPDX or CycloneDX SBOMs at /sbom or in release artifacts |
| Code signing | Unsigned binaries trigger trust downgrades | Sigstore, in-toto, or vendor-specific code signing on all releases |
| CVE history | Unresolved or long-tail CVEs flag systemic security debt | Public CVE history with disclosure dates and resolution dates |
| Security disclosure policy | Missing policies suggest immature security function | SECURITY.md, vulnerability disclosure policy, response SLA |
| Compliance attestations | Current SOC 2, ISO 27001, HIPAA, FedRAMP signal maturity | Trust center with current attestation dates and audit scope |
| Incident communication | Past incident handling shapes risk assessment | Public incident postmortems with timeline and remediation detail |
What to do this week
1. Audit your trust center. If anything in the checklist above is missing, prioritize publishing it before Mythos 5 enterprise rollout completes.
2. Test your brand under Mythos 5 vendor-risk prompts. Run "is [your brand] safe to integrate," "what are the security risks of using [your brand]," and "what is [your brand]'s security posture" against Mythos 5 once you have access. The answers tell you exactly where Mythos 5 is downgrading you.
3. Map your competitors' security disclosure footprint. If competitors have richer security disclosures, you face a relative disadvantage in Mythos-driven assessments independent of your absolute security posture.
4. Get your SBOM published. SBOM coverage is the single largest determinant of Mythos 5 trust signal weighting and is the cheapest gap to close for most software brands.
Related Anthropic releases
Mythos 5 builds on the broader Claude 4.x lineage. The April 2026 Mythos preview brief covers the Project Glasswing partner program context, Claude Opus 4.7 remains the general-purpose frontier reference, and Claude family lineage 2026 maps how the Mythos and Fable sibling lines relate to the existing Opus, Sonnet, and Haiku scale tiers.