Author

claudenews

Claude’s New Retention Policy for Mythos-Class Models: What Developers Need to Know

For Claude and Claude Code developers, this is one of those policy updates that matters less because it’s flashy and more because it changes the operational contract. Anthropic is drawing a line around a new class of more capable models, and for certain zero-data-retention setups, the tradeoff is straightforward: if you want access, prompts and outputs are retained for 30 days for safety review.

Key Points

• Anthropic is introducing limited data retention and review for Mythos-class models and future similarly capable “covered models.”
• Prompts and outputs are retained for 30 days for trust and safety purposes.
• The policy goes into effect on June 9, 2026.
• This does not affect consumer plans like Claude Free, Pro, and Max on web, desktop, mobile, Claude.ai, or Claude Code there, because those surfaces already retain inputs and outputs for safety purposes.
• The change mainly applies to organizations using zero data retention (ZDR) in:
  • Claude Console workspaces
  • Claude Code with ZDR in Claude Enterprise
  • Claude via AWS Bedrock, Google Cloud Agent Platform, or Microsoft Foundry with ZDR
• Anthropic says this is needed because some abuse patterns only become visible across many requests, not one at a time.
• Examples cited include best-of-N jailbreaking, state-sponsored espionage, and data extortion campaigns.
• Anthropic says only a small set of approved reviewers can access flagged conversations, through tooling that prevents export, copying, or downloading.
• Access is recorded in a tamper-proof log.
• Data is deleted automatically after 30 days, except for rare safety investigations or legal requirements.
• Eligible orgs can also use customer-managed encryption keys and access transparency audit logs.
• For many teams, there is nothing to configure unless they currently rely on ZDR and want to use the covered models.
• The configuration details vary by platform:
  • Claude Platform / API: enable retention at the workspace level
  • AWS Bedrock: enable retention; data stays in AWS
  • Google Cloud Agent Platform: enable retention; data stays in GCP
  • Azure Foundry: retention is per Azure subscription; ZDR users may need a separate subscription
  • Claude Enterprise with ZDR: admin console controls are coming for Primary Owners
• Claude chat and Cowork through Claude for Enterprise already use standard retention, so they’ll get access as models become available.

My Take

What strikes me is that Anthropic is being unusually explicit about the security rationale here. This doesn’t read like “we want more data because data is good”; it reads like “these models are powerful enough that abuse detection needs cross-request context.” I think that’s a defensible argument, especially for model-assisted cyber abuse and long-running malicious campaigns, where single-prompt moderation is often too myopic.

The part I find most important is the scope. This is not a blanket change for everyone; it’s targeted at ZDR setups and at access paths where Anthropic or the cloud provider needs enough retention to do pattern analysis. That said, if you picked ZDR specifically because you wanted the narrowest possible data footprint, this is a meaningful shift. Even if the retention window is “only” 30 days, it’s still a real policy tradeoff, not a cosmetic one.

I’d be curious whether developers will see this as a reasonable price for access to stronger models, or as a sign that the next frontier of capability is increasingly inseparable from more invasive safety operations. My guess is both can be true. In practice, I think many teams will accept the change if the model uplift is significant and the controls are as tight as Anthropic claims, but the privacy-sensitive ones will want to audit the exact deployment path very carefully.

If I were using Claude Code in a production environment, I’d pay close attention to where the workspace boundary lives, whether retention is controlled at the org or subscription level, and how much separation I can preserve between experimental and production usage. I’d also want to know how often real human review actually happens versus how often data is just retained passively for classifier analysis. That’s not spelled out here, and it matters.

The bigger takeaway is simple: Anthropic is making advanced model access conditional on a more conservative safety posture. For developers, the headline isn’t just “30-day retention”; it’s that model capability, deployment surface, and data governance are becoming tightly coupled.

Reference: Data retention practices for Mythos-class models | Claude Help Center

同じ著者の記事

Claude Desktop’s Windows VM Problem Is a Good Reminder That “Optional” Infrastructure Isn’t Free

For Claude and Claude Code users, this bug report is interesting because it exposes a very real gap between chat-first usage and agent infrastructure on Windows. Even if you never intend to use Cowork or agent mode, the desktop app may still spin up a heavyweight virtualized stack in the background, and that’s the kind of thing developers notice immediately on a constrained machine. A GitHub issue reports that Claude Desktop on Windows spawns a Hyper-V VM on every launch, even for chat-only use.

papoo.work

Anthropic’s Fable guardrails and the cybersecurity backlash

For Claude and Claude Code users, this story is a useful reminder that “safe” model access in security-sensitive domains is still a moving target. Anthropic’s Fable is meant to be the public, limited version of its more powerful cybersecurity model Mythos, but the early reaction suggests the restrictions may be so aggressive that they get in the way of legitimate work. Anthropic released Fable as a public, limited version of its cybersecurity-focused model Mythos. Cybersecurity researchers are c

papoo.work

Anthropic’s Claude Fable 5 and Mythos 5: A Bigger Leap for Agentic Work, with Real Safety Tradeoffs

Anthropic is positioning Claude Fable 5 as its most capable generally available model yet, and from a Claude Code / developer perspective, the interesting part is not just the benchmark wins — it’s the way the company is packaging capability with selective safety gating. The same underlying model also appears as Claude Mythos 5 for trusted cyber and infrastructure use cases, which makes this launch feel like a very deliberate split between broad deployment and high-trust specialist access. Claud

papoo.work

Designing in the Codebase Instead of the Mockup Tool

This Jane Street post is interesting because it shows Claude being used not just to write code, but to collapse the distance between design intent and a shippable prototype. For Claude Code users, that’s the real shift: the model isn’t only speeding up implementation, it’s changing what it even means to “design” software. I think that’s a much bigger deal than yet another demo of code generation. The author, a designer at Jane Street, says they were long skeptical of LLMs because earlier attempt

papoo.work

A Strong Case for an Official Claude Desktop Build on Linux

For Claude and Claude Code developers, this GitHub issue lands on a very practical pain point: the desktop app is still where a lot of the interesting workflow lives, but Linux users are left out. That matters not just for casual chatting, but for plugin testing, desktop extensions, computer use, dictation, and other parts of the Claude desktop experience that the CLI cannot replace. What makes this request interesting is that it is not just “please support my favorite OS.” The author argues tha

papoo.work

Claude as the New Documentation Audience

Mark Dominus makes a simple but revealing observation: programmers who complain about documenting for coworkers are often perfectly willing to document for Claude. That sounds funny at first, but it points to a real shift in how developers are using LLMs as collaborators, and the article argues that those machine-facing notes can become genuinely useful project artifacts. The author recalls hearing a common complaint: people are angry that programmers will write detailed `CLAUDE.md` and `PROJECT

papoo.work

Anthropic’s Reference Harness for Autonomous Vulnerability Discovery

Anthropic’s new `defending-code-reference-harness` repo is interesting because it turns “Claude for security” from a vague demo into a concrete workflow. If you build with Claude Code or are experimenting with agentic security tooling, this is the kind of repo that shows how far the model can be pushed when the task is tightly scoped and the environment is carefully sandboxed. The repo is a reference implementation for autonomous vulnerability discovery and remediation with Claude. It packag

papoo.work

A Git MCP Server Built in Go: A Small but Useful Sign of the Ecosystem Maturing

From a Claude / Claude Code developer’s perspective, this kind of project is interesting because it sits right at the intersection of tooling, agent workflows, and real developer infrastructure. A Git MCP server is the sort of thing that can make Claude more useful in day-to-day engineering work, especially when you want the model to inspect or act on repositories in a structured way. The source is a Reddit post titled: “open-source - i built a full git mcp server in go.” The post appears to be

papoo.work

Researchers, Claude, and the Next Wave of Frontier AI Collaboration

From a Claude / Claude Code developer’s perspective, this kind of headline matters because it hints at where serious AI work is happening: not just in product demos, but in collaborations with elite researchers. Even without the full article text here, the framing alone suggests Anthropic is still positioned as a serious magnet for technical talent and frontier research energy. The source headline says elite researchers teamed up with Anthropic. The story appears to be about high-level research

papoo.work

Firefox's April Security Spike and What It Means for Claude Builders

From a Claude or Claude Code developer’s perspective, this story is interesting because browser security trends are increasingly part of the LLM app surface area. If Firefox really saw a massive April spike in security-related activity, that’s a reminder that the browser is still one of the most sensitive environments any AI-powered workflow touches. The source title indicates that Firefox reported a “massive April spike” in security-related activity. The Reddit post itself is not accessible in

papoo.work