Overview
- Claude Code Security is live in a limited research preview for Enterprise and Team customers, with expedited access offered to open‑source maintainers.
- The tool scans entire codebases, reasons about component interactions and data flows, and provides targeted patch suggestions that require developer approval.
- Anthropic says every finding is re‑checked through layered verification with severity and confidence ratings before reaching analysts to reduce false positives.
- Internal testing with Opus 4.6 uncovered more than 500 previously unknown vulnerabilities in production open‑source projects, with triage and responsible disclosure ongoing.
- Investors sold off cybersecurity stocks after the announcement, with JFrog down about 24% and declines reported for CrowdStrike, Okta, GitLab, Cloudflare, Zscaler, Palo Alto Networks and others, even as outside researchers caution that experienced humans remain essential for higher‑level threats.