Agentic AI News

Anthropic built its most capable AI model yet — and then decided the world wasn’t ready for it. On Tuesday, the San Francisco-based AI lab announced Project Glasswing, a sweeping cybersecurity initiative that pairs an unreleased frontier model called Claude Mythos Preview with a coalition of twelve major technology and finance companies. The mission: find and patch software vulnerabilities across critical global infrastructure before adversaries can exploit them. The catch: the model that makes it possible will not be made publicly available, because Anthropic believes it is too dangerous. ...

If you are running Flowise and have not upgraded to version 3.0.6 of the npm package, you are likely already compromised — or actively being probed. Researchers at VulnCheck have confirmed that CVE-2025-59528, a CVSS 10.0 (maximum severity) code injection vulnerability in the open-source AI agent builder Flowise, has been under active exploitation for over six months. Between 12,000 and 15,000 publicly exposed Flowise instances remain unpatched as of the time of reporting, according to data shared with The Hacker News and BleepingComputer. ...

Eighteen months ago, Anthropic was the scrappy safety-focused challenger. Today, it’s the highest-revenue AI company in the world — and it’s eyeing a public market debut that could value it at $380 billion. The numbers are striking: Anthropic’s annualized revenue run rate has crossed $30 billion, surpassing OpenAI’s $25 billion for the first time. The company’s enterprise customer base has more than doubled — over 1,000 businesses now spend at least $1 million per year on Anthropic’s APIs and services. And an IPO, once considered a distant hypothetical, is now being seriously evaluated for as early as October 2026. ...

The Agent Skills open standard just got a significant new toolkit. Felo Skills launched today as an open-source npm package that plugs real-time search, slide generation, web content extraction, social listening, and knowledge base capabilities directly into Claude Code, OpenClaw, Gemini CLI, and other coding agents — in a single install. If you’ve wished your AI coding agent could search the web in real time, pull structured content from any URL, or generate a slide deck from a prompt without leaving your workflow, this is the package you’ve been waiting for. ...

It’s been a long road from “interesting prototype” to “production-ready.” As of April 3, 2026, Microsoft Agent Framework has officially reached version 1.0 — and with it comes a long-term support commitment, stable APIs for both .NET and Python, and a clear answer to the question developers have been asking for a year: is this thing safe to build on? The answer is now yes. What Ships in 1.0 Agent Framework 1.0 brings together several threads that Microsoft has been developing in parallel. The framework unifies the enterprise-ready foundations of Semantic Kernel with the orchestration capabilities of AutoGen into a single, open-source SDK. That consolidation has been the core promise since the project launched last October — and 1.0 is the first release that fully delivers on it. ...

Setting up AI agents in most platforms still looks a lot like configuring infrastructure: YAML files, JSON configs, deployment scripts, role definitions in nested attribute hierarchies. It’s powerful, but it’s a specialist skill that most team members don’t have — and it creates a bottleneck every time someone needs to add, modify, or remove an agent. OpenClaw.Direct wants to eliminate that bottleneck entirely. The company launched a Model Context Protocol (MCP) server that lets teams hire, train, and fire AI employees through natural conversation in Claude Desktop and ChatGPT. ...

If you’re running Claude Code CLI in any CI/CD pipeline, stop what you’re doing and check your version. Right now. Three newly registered CVEs — CVE-2026-35020, CVE-2026-35021, and CVE-2026-35022 — are command injection flaws in Claude Code CLI that researchers at phoenix.security validated as exploitable on v2.1.91 as recently as April 3, 2026. They chain together to enable credential exfiltration over plain HTTP, and every one of them carries a CVSS score of 9.8 (Critical). On top of that, Anthropic shipped a separate patch on April 6 for a distinct high-severity deny-rule bypass — both security issues trace back to the same Claude Code source leak. ...

Something is wrong with Claude Code in April 2026 — and it’s not just Reddit complaints. The Register is reporting that AMD’s AI Director has publicly stated that Claude Code “cannot be trusted to perform complex engineering tasks,” citing a pattern of degraded output quality that has frustrated developers across the industry. This story is distinct from the 50-subcommand bypass CVE that made headlines earlier this month. That was a security vulnerability. This is something potentially more operationally damaging: a quality regression that appears to affect the model’s core competence at the engineering tasks it’s supposed to excel at. ...

If you’re building autonomous AI agents — and especially if you’re deploying them to browse the web, process emails, or interact with external data — a new Google DeepMind paper deserves your immediate attention. The research maps the first systematic framework for what the authors call “AI Agent Traps”: adversarial techniques embedded in the environment that exploit the gap between human perception and machine parsing. The headline number is alarming: content injection hijacks succeeded in up to 86% of tested scenarios. And in tests targeting Microsoft M365 Copilot specifically, behavioral control traps achieved a perfect 10/10 data exfiltration rate. ...

Something significant happened in New York this week. For the first time, the core maintainers of the Model Context Protocol from all four major AI companies — Anthropic, AWS, Microsoft, and OpenAI — sat in the same room and agreed on a shared roadmap for enterprise-grade MCP security, governance, and reliability. The occasion was the MCP Dev Summit, and the outcome is a formalized enterprise security roadmap under a new governance body: the Agentic AI Foundation (AAIF). The MCP specification itself is moving under AAIF governance, signaling that what began as an Anthropic-led protocol is becoming true industry infrastructure. ...