Tag
The US issued an export control on the Mythos and Fable models, and suddenly jailbreaks and indirect prompt injection are board-level topics. The technical threat didn't change. The audience did. Here is what that means for the agent running on your machine.
A new /config syntax in Claude Code v2.1.181 lets users toggle reasoning depth and sandbox permissions from the prompt. The interesting part isn't the feature. It's what the feature admits about every agent's hidden defaults.
A White House report shows Anthropic's Fable model declining a security review prompt, then complying when the same task is reworded. The trust boundary is inside the model, and that breaks the assumptions every agent harness makes.
Microsoft's CEO says the new IP of the firm is the cognitive loop between people and digital systems, not the model. Read closely, it's an argument for why the agent war gets won at the platform layer, where Microsoft already lives.
When Python packages can be published straight to the browser, the agent runtime stops being a server problem. Two shipping releases this week say the harness is moving client-side.
Claude Fable 5 spots problems and fixes them without being asked. That shift from reactive assistant to self-directed problem-solver moves the work of oversight from giving instructions to setting boundaries.
A single line in a Python SDK changelog marks Claude Managed Agents crossing from beta experiment to platform primitive. The interesting part isn't the feature. It's what the feature admits about where Anthropic now thinks value lives.
Claude Code now ships Fable 5, a model Anthropic says exceeds anything it has released publicly. The model is the loud part. The quiet part is that the harness around it barely moved, and the harness is where your agents actually live or die.
When Simon Willison built a new agentic editing plugin, he didn't reinvent the wheel. He copied Claude's. Here's what that tells you about where the real value in AI agents lives.
Claude Code v2.1.160 added a prompt before writing to shell startup files that could otherwise lead to unintended command execution. The fix is correct. The two-year gap before it shipped is the real story.
