ai, research,

claude-code-security

Cui Cui Follow Feb 21, 2026 · 4 mins read
claude-code-security
Share this

Announcements Making frontier cybersecurity capabilities available to defenders Feb 20, 2026 Claude Code Security , a new capability built into Claude Code on the web, is now available in a limited research preview. It scans codebases for security vulnerabilities and suggests targeted software patch

Executive Summary

Announcements Making frontier cybersecurity capabilities available to defenders Feb 20, 2026 Claude Code Security , a new capability built into Claude Code on the web, is now available in a limited research preview. It scans codebases for security vulnerabilities and suggests targeted software patches for human review, allowing teams to find and fix security issues that traditional methods often miss. Security teams face a common challenge: too many software vulnerabilities and not enough people

Key Insights

  • Announcements Making frontier cybersecurity capabilities available to defenders Feb 20, 2026 Claude Code Security , a new capability built into Claude Code on the web, is now available in a limited research preview. It scans codebases for security vulnerabilities and suggests targeted software patches for human review, allowing teams to find and fix security issues that traditional methods often miss. Security teams face a common challenge: too many software vulnerabilities and not enough people to address them. Existing analysis tools help, but only to a point, as they usually look for known patterns. Finding the subtle, context-dependent vulnerabilities that are often exploited by attackers requires skilled human researchers, who are dealing with ever-expanding backlogs. AI is beginning to change that calculus. We’ve recently shown that Claude can detect novel, high-severity vulnerabilities . But the same capabilities that help defenders find and fix vulnerabilities could help attackers exploit them. Claude Code Security is intended to put this power squarely in the hands of defenders and protect code against this new category of AI-enabled attack. We’re releasing it as a limited research preview to Enterprise and Team customers, with expedited access for maintainers of open-source repositories, so we can work together to refine its capabilities and ensure it is deployed responsibly. How Claude Code Security works Static analysis—a widely deployed form of automated security testing—is typically rule-based, meaning it matches code against known vulnerability patterns. That catches common issues, like exposed passwords or outdated encryption, but often misses more complex vulnerabilities, like flaws in business logic or broken access control. Rather than scanning for known patterns, Claude Code Security reads and reasons about your code the way a human security researcher would: understanding how components interact, tracing how data moves through your application,

Technical Deep Dive

Announcements Making frontier cybersecurity capabilities available to defenders Feb 20, 2026 Claude Code Security , a new capability built into Claude Code on the web, is now available in a limited research preview. It scans codebases for security vulnerabilities and suggests targeted software patches for human review, allowing teams to find and fix security issues that traditional methods often miss. Security teams face a common challenge: too many software vulnerabilities and not enough people to address them. Existing analysis tools help, but only to a point, as they usually look for known patterns. Finding the subtle, context-dependent vulnerabilities that are often exploited by attackers requires skilled human researchers, who are dealing with ever-expanding backlogs. AI is beginning to change that calculus. We’ve recently shown that Claude can detect novel, high-severity vulnerabilities . But the same capabilities that help defenders find and fix vulnerabilities could help attackers exploit them. Claude Code Security is intended to put this power squarely in the hands of defenders and protect code against this new category of AI-enabled attack. We’re releasing it as a limited research preview to Enterprise and Team customers, with expedited access for maintainers of open-source repositories, so we can work together to refine its capabilities and ensure it is deployed responsibly. How Claude Code Security works Static analysis—a widely deployed form of automated security testing—is typically rule-based, meaning it matches code against known vulnerability patterns. That catches common issues, like exposed passwords or outdated encryption, but often misses more complex vulnerabilities, like flaws in business logic or broken access control. Rather than scanning for known patterns, Claude Code Security reads and reasons about your code the way a human security researcher would: understanding how components interact, tracing how data moves through your application,

Why This Matters

This article from Anthropic’s News team shares valuable insights into cutting-edge AI development, engineering best practices, and the future of AI systems. Essential reading for AI engineers and researchers.

This post was automatically curated from Anthropic. Published on 2026-02-21T08:46:24.690Z.

ai research anthropic
Join Newsletter
Get the latest news right in your inbox. We never spam!
Cui
Written by Cui Follow
Hi, I am Z, the coder for cuizhanming.com!

Click to load Disqus comments

Claude Code Security Triggers $10B Cybersecurity Stock Crash: AI Disrupts Traditional Security Market
claude-sonnet-4-6