Comment by kajman
17 days ago
So where are they, then? Am I misunderstanding the process and this stuff is kept under wraps even after release?
There's three CVEs in today's security advisory that mention Anthropic.
https://www.mozilla.org/en-US/security/advisories/mfsa2026-3...
There's also no write-up I can see that distinguishes to what extent this is the work of the seven people credited alongside Mythos.
Last three CVEs are collections of bugs. CVE-2026-6784 is a collection of 55 bugs. CVE-2026-6785 is a collection of 154 bugs. CVE-2026-6786 is a collection of 107 bugs.
As for credits, I think bugs are ultimately credited to people, and this time Mozilla people used Mythos, as opposed to Anthropic people using Opus or Mythos.