{"slug": "policy-pulse-issue-23-week-of-july-4-2026", "title": "Policy Pulse - Issue #23 | Week of July 4, 2026", "summary": "The Trump administration lifted export controls on Anthropic's Mythos 5 and Fable 5 AI models two weeks after imposing them, restoring global access with a warning that controls could be reimposed. Meanwhile, OpenAI's GPT-5.6 Sol remains restricted to government-approved customers during its cybersecurity review, highlighting asymmetric AI access policies.", "body_md": "# Policy Pulse - Issue #23 | Week of July 4, 2026\n\nWashington lifts export controls on Anthropic's frontier cyber models two weeks after locking them down. Plus Akrites launches to absorb AI-scale disclosure and ENISA's CVE Root appoints a new CNA.\n\n# Policy Pulse - Issue #23 | Week of July 4, 2026\n\n*Your weekly briefing on cybersecurity policy affecting vulnerability disclosure and security research.*\n\n### Top Story\n\n**The Gate Swings Open: US Lifts Export Controls on Anthropic's Frontier Cyber Models**\n\nLate on June 30, the Trump administration lifted the export controls it had placed on Anthropic's Mythos 5 and Fable 5 models roughly two and a half weeks earlier, and Anthropic began restoring access the following day ([Forbes](https://www.forbes.com/sites/siladityaray/2026/07/01/trump-administration-lifts-export-controls-on-anthropics-mythos-5-and-fable-5-ai-models/?ref=blog.disclose.io), [CBS News](https://www.cbsnews.com/news/anthropic-trump-administration-lifted-claude-restrictions/?ref=blog.disclose.io)). The reversal came with a warning attached: Commerce Secretary Howard Lutnick's letter to the company made clear that controls can be reimposed if circumstances change or if Anthropic fails to adhere to its commitments. During the restriction window, Mythos 5 access had been narrowed to a small group of cyber defenders and infrastructure providers ([SecurityWeek](https://www.securityweek.com/openai-and-anthropic-limit-new-ai-models-to-trump-approved-customers-during-cybersecurity-review/?ref=blog.disclose.io)).\n\nThe asymmetry is worth watching. OpenAI's GPT-5.6 Sol remains limited to a group of roughly 20 government-approved customers while its cybersecurity review runs its course ([AP](https://wgno.com/news/business/ap-openai-limits-its-newest-chatgpt-product-to-trump-approved-customers-during-cybersecurity-review/amp/?ref=blog.disclose.io), [SecurityWeek](https://www.securityweek.com/openai-and-anthropic-limit-new-ai-models-to-trump-approved-customers-during-cybersecurity-review/?ref=blog.disclose.io)). In the space of three weeks, the US government restricted, re-tiered, and then released access to the most capable vulnerability-discovery models on the market, all through export-control and procurement machinery rather than any statute. Access policy is being made at wire speed, and nobody in the disclosure ecosystem gets a comment period.\n\n**Why it matters for VDP:** Program operators got a two-week preview of a world where AI-discovered findings flow first to a government-approved tier, and that precedent now sits on the shelf, ready for reuse. With global access restored, expect AI-assisted submission volume to resume climbing. The intake question from Issue #22 has not gone away, it has just changed hands.\n\n*Throwback: In Issue #22, we covered the government gatekeeping of GPT-5.6 Sol and Mythos 5 as our top story; this week the gate swung open for Anthropic, while OpenAI's stayed shut.*\n\n### Upcoming Deadlines & Events\n\n| Date | Agency | Event/Deadline | Action Required | Link |\n|---|---|---|---|---|\nJul 6, 2026 |\nNIST | IR 8323 Rev. 2 (Foundational PNT Profile) comment period closes | Submit comments |\n|\n\n**Jul 8, 2026**[NIST CSRC](https://csrc.nist.gov/publications/drafts-open-for-comment?ref=blog.disclose.io)** Aug 24, 2026**[Copyright Office](https://www.copyright.gov/1201/2027/?ref=blog.disclose.io)** Aug 24, 2026**[NIST CSRC](https://csrc.nist.gov/publications/drafts-open-for-comment?ref=blog.disclose.io)** Aug 31, 2026**[Council of Europe](https://www.coe.int/en/web/cybercrime/octopus-conference-2026?ref=blog.disclose.io)** Sep 11, 2026**[ENISA SRP](https://www.enisa.europa.eu/topics/product-security-and-certification/single-reporting-platform-srp?ref=blog.disclose.io)**Sep 28, 2026**[Copyright Office](https://www.copyright.gov/1201/2027/?ref=blog.disclose.io)### This Week in Policy\n\n#### AI & Emerging Tech Security\n\n**Linux Foundation launches Akrites, a shared SIRT for the AI-discovery era**: Around 20 founding members, including AWS, Anthropic, Google, Microsoft, OpenAI, IBM, Cisco, and Red Hat, launched Akrites on June 25 to give critical open-source projects a shared Security Incident Response Team and a single standardized coordinated disclosure process, on the explicit rationale that AI now finds vulnerabilities faster than the existing disclosure model can absorb ([Linux Foundation](https://www.linuxfoundation.org/press/linux-foundation-and-industry-leaders-launch-akrites-to-defend-critical-open-source-software-against-ai-enabled-cyber-threats?ref=blog.disclose.io),[Help Net Security](https://www.helpnetsecurity.com/2026/06/26/akrites-open-source-security-framework/?ref=blog.disclose.io)). The context: VulnCheck's analysis of Anthropic's public CVD ledger found that at the current patch rate it would take roughly 2.4 years to clear the backlog of AI-discovered findings ([VulnCheck](https://www.vulncheck.com/blog/anthropic-ledger?ref=blog.disclose.io)).**Why it matters for VDP:** this is the first purpose-built intake infrastructure designed for machine-scale discovery volume. If it works, centralized confidentiality-first intake becomes the template that individual VDPs are measured against.\n\n#### Federal Strategy & Regulation\n\n**NIST finalizes SP 800-18 Revision 2**: Released June 30, the final revision expands federal system planning from a single security plan into three interconnected plans covering security, privacy, and cybersecurity supply chain risk management ([NIST](https://www.nist.gov/news-events/news/2026/06/security-privacy-and-c-scrm-risk-management-plans-nist-releases-sp-800-18r2?ref=blog.disclose.io)).**Why it matters for VDP:** system security plans are where federal programs document how disclosed vulnerabilities get handled; supply chain risk joining that document set pulls third-party disclosure handling into scope.\n\n#### CVE & Vulnerability Programs\n\n**ENISA's CVE Root appoints a new CNA**: VulNow B.V. was formally appointed a CVE Numbering Authority under ENISA's CVE Root on July 1 ([GlobeNewswire](https://www.globenewswire.com/news-release/2026/07/01/3320347/0/en/vulnow-becomes-a-cve-numbering-authority-under-enisa-root.html?ref=blog.disclose.io)). The company matters less than the structure: ENISA is now operating as an independent CVE Root and appointing CNAs beneath it, federating CVE issuance beyond the historically US-centered MITRE structure.**Why it matters for VDP:** coordination and deduplication across two live roots stop being hypothetical. Programs should confirm which CNA-of-record applies to their products.**SharePoint RCE lands on KEV with a 3-day federal deadline**: CISA added CVE-2026-45659, a SharePoint Server deserialization RCE scoring CVSS 8.8, to the Known Exploited Vulnerabilities catalog on July 1 with a July 4 remediation deadline for federal civilian agencies ([The Hacker News](https://thehackernews.com/2026/07/sharepoint-rce-cve-2026-45659-added-to.html?ref=blog.disclose.io),[KEV catalog](https://www.cisa.gov/known-exploited-vulnerabilities-catalog?ref=blog.disclose.io)). Microsoft patched it in the May 2026 cycle and had assessed it as \"Exploitation Less Likely\"; CISA's listing cites evidence of active exploitation.**Why it matters for VDP:** this is one of the first high-visibility KEV actions running on BOD 26-04's risk-based clock, and a reminder that vendor exploitability ratings are a prediction, not a guarantee.**Seven unpatched flaws in a filesystem library embedded everywhere**: runZero disclosed seven vulnerabilities in FatFs, the FAT/exFAT filesystem library that ships in firmware across security cameras, drones, industrial controllers, and hardware crypto wallets, led by CVE-2026-6682 (CVSS 7.6, a FAT32-mount integer overflow). The upstream maintainer is unresponsive, so there is no upstream fix; every downstream vendor must patch independently ([The Hacker News](https://thehackernews.com/2026/07/unpatched-flaws-disclosed-in-filesystem.html?ref=blog.disclose.io)).**Why it matters for VDP:** the orphaned-dependency scenario is the hardest case in multi-party coordinated disclosure, and AI-scale discovery will surface more of them.\n\n#### Legal & Researcher Protections\n\n**Canada's Bill C-8 receives Royal Assent**: Canada enacted its Cyber Security Act on June 16, creating the Critical Cyber Systems Protection Act with mandatory cybersecurity programs and incident reporting to the Communications Security Establishment on a regulatory clock capped at 72 hours, for designated operators in finance, telecom, energy, and transport ([Osler](https://www.osler.com/en/insights/updates/canadas-bill-c-8-what-businesses-need-to-know-about-the-new-cybersecurity-framework/?ref=blog.disclose.io)). The Act adds no safe harbour for external researchers, and its confidentiality-of-directions provisions could complicate disclosure around designated operators.**Why it matters for VDP:** a fifth of the Five Eyes just rebuilt its critical-infrastructure cyber law without researcher protections in it.**New Zealand weighs an \"illegally obtained information\" offence**: Following a public consultation that closed on April 19, New Zealand's government is weighing a new offence covering those who view, possess, or disseminate personal information knowing it was illegally obtained ([Simpson Grierson](https://www.simpsongrierson.com/insights-news/legal-updates/new-zealand-s-next-cyber-era-higher-standards-harder-consequences?ref=blog.disclose.io)).**Why it matters for VDP:** without a good-faith carve-out, researchers and threat-intel analysts who handle breach data for defensive purposes could be swept in. Drafting is the whole game here.\n\n### Worth Reading\n\n(VulnCheck): The empirical case that intake and remediation, not discovery, are now the binding constraint on coordinated disclosure.[Anthropic's CVD Ledger: The Numbers Behind AI-Scale Discovery](https://www.vulncheck.com/blog/anthropic-ledger?ref=blog.disclose.io)(Journal of Cybersecurity): Peer-reviewed argument that NIS2 and the CRA lack explicit researcher protections, with a two-pillar fix.[Hunting for Vulnerabilities: Call for European Protection of Security Researchers](https://academic.oup.com/cybersecurity/article/12/1/tyag002/8449232?ref=blog.disclose.io)(Cooley): The CFAA is being stretched to agentic tooling; anyone running autonomous testing should read this one.[Court Finds AI Agent May Violate State, Federal Law by Accessing Amazon Accounts](https://www.cooley.com/news/insight/2026/2026-03-17-court-finds-ai-agent-may-violate-state-federal-law-by-accessing-amazon-accounts-without-authorization?ref=blog.disclose.io)(Help Net Security): Useful context for this week's VulNow appointment, straight from ENISA on why Europe is building an interoperable node rather than a fork.[ENISA on Distributed CVE Governance](https://www.helpnetsecurity.com/2026/04/15/nuno-rodrigues-carvalho-enisa-cve-program-vulnerability-disclosure/?ref=blog.disclose.io)\n\n*Policy Pulse is a weekly bulletin from disclose.io. Keeping the security research community informed on policy that affects our work.*\n\n*Have a tip or want to contribute? Reply to this email, reach out on Twitter/X, or drop a comment here!*", "url": "https://wpnews.pro/news/policy-pulse-issue-23-week-of-july-4-2026", "canonical_source": "https://blog.disclose.io/policy-pulse-issue-23-week-of-july-4-2026/", "published_at": "2026-07-05 05:32:41+00:00", "updated_at": "2026-07-07 01:46:42.424105+00:00", "lang": "en", "topics": ["ai-policy", "ai-safety", "artificial-intelligence", "ai-products"], "entities": ["Anthropic", "OpenAI", "Trump administration", "Howard Lutnick", "Mythos 5", "Fable 5", "GPT-5.6 Sol", "Commerce Department"], "alternates": {"html": "https://wpnews.pro/news/policy-pulse-issue-23-week-of-july-4-2026", "markdown": "https://wpnews.pro/news/policy-pulse-issue-23-week-of-july-4-2026.md", "text": "https://wpnews.pro/news/policy-pulse-issue-23-week-of-july-4-2026.txt", "jsonld": "https://wpnews.pro/news/policy-pulse-issue-23-week-of-july-4-2026.jsonld"}}