Last week, we covered how a misconfigured CMS spilled Anthropic's secrets. The initial takes focused on the irony — a safety-first company with screen-door security. Fair. But now that more details have emerged through follow-up reporting and a second leak — 500,000 lines of Claude Code source code, after the @anthropic-ai/claude-code package briefly shipped unminified to npm's public registry — the embarrassment isn't the story anymore.
What was behind that unlocked door is.
What Mythos Actually Is
Anthropic hasn't just trained a better Opus. They've created a fourth model tier — above Haiku, above Sonnet, above Opus. Internally codenamed "Capybara," the leaked draft describes Mythos as "larger and more intelligent than our Opus models — which were, until now, our most powerful."
That's not marketing copy polished for a keynote. That's an internal document nobody was supposed to read. When a company tells itself about a "step change" and "dramatically higher scores" on coding, reasoning, and cybersecurity — without trying to sell you anything — you pay attention. As one r/MachineLearning commenter put it: "They don't say step change or dramatically higher scores for every release."
The name signals ambition: Mythos, meaning "the deep connective tissue that links together knowledge and ideas." They're not claiming incremental improvement. They're claiming the model reasons differently.
The Uncomfortable Part
As Capitan covered this morning, Anthropic is privately briefing senior government officials that Mythos makes large-scale cyberattacks "much more likely in 2026." Their own assessment: the model is "currently far ahead of any other AI model in cyber capabilities."
Context: according to Anthropic's published Opus 4.6 safety evaluation, Opus 4.6 found 22 Firefox zero-days in two weeks — 14 high-severity, all patched in Firefox 148. But it only managed to weaponize 2 into working exploits after hundreds of attempts at roughly $4,000 in API costs. Mythos apparently makes that look like warmup reps.
So Anthropic built something so effective at breaking things that their response was to call the government before calling their customers. Let that sink in.
What the Code Reveals
The second leak — Claude Code's full source published to npm when the package shipped unminified — confirmed what the CMS leak hinted at. Mythos references are woven into the agent harness. Both "fast" and "slow" variants exist in the codebase. This isn't a research paper or a benchmark stunt. This is production infrastructure being assembled around a model that doesn't officially exist yet.
The Competitive Shockwave
If Mythos performs as described, Anthropic just cracked open a capability gap nobody else is positioned to close quickly. OpenAI is busy shutting down $15M/day products and consolidating into a superapp. Microsoft just shipped its first independent MAI models — impressive, but a different weight class entirely. Open-weight alternatives like Qwen 3.5 and Gemma 4 aren't competing at this altitude.
Anthropic's own words: pricing will be "very expensive." Access will be gated, cyber defenders first. Which tells you exactly how nervous they are about what they've built.
What to Watch
Three things. First, the rollout timeline — Anthropic has said nothing official, which given their track record this week, could mean anything from strategic patience to panic. Second, the competitive response — when your rival accidentally reveals a tier above your best, your next board meeting gets uncomfortable. Third, how long "cyber defenders first" holds before the model's capabilities leak faster than Anthropic's CMS assets did.
The most important model of 2026 was announced by accident, by the people who keep telling us they're the careful ones.
→ Fortune Exclusive → NEROMEDIA: The Original Leak → NEROMEDIA: The Guard Left the Door Open
