Proud to announce @zauthinc as our security partner Privacy means nothing if the protocol underneath it isn't sound. With Arcane, you can move quietly with confidence. The future of privacy, secured.

Quality cybersecurity used to be a luxury only the big players could afford, but not anymore. There's no excuse left to skip it, and Arcane didn't. Proud to be their security partner.

Proud to announce @zauthinc as our security partner Privacy means nothing if the protocol underneath it isn't sound. With Arcane, you can move quietly with confidence. The future of privacy, secured.

Fable is the best cybersecurity model on the market. Despite that, we find vulnerabilities Fable misses, and the difference is everything we've built around the model. Live payloads, verification loops, attack sequencing, endpoint discovery, exploit chaining. The best $49 you'll spend on your product.

Good security shouldn't cost thousands, and now it doesn't. Vector acts as a team of senior engineers against your live app. Run it once and it earns a permanent spot in your dev flow. For $49, we find an average of 9 vulnerabilities on every pentest. Try it today.

The US government, citing national security authorities, has issued an export control directive to suspend all access to Fable 5 and Mythos 5 by any foreign national, whether inside or outside the United States, including foreign national Anthropic employees. The net effect of this order is that we must abruptly disable Fable 5 and Mythos 5 for all our customers to ensure compliance. Access to all other Claude models is not affected. We apologize for this disruption to our customers. We believe this is a misunderstanding and are working to restore access as soon as possible. Read our full statement: anthropic.com/news/fable-myt…

used @zauthinc's Vector to pentest @useAtelier and it caught a real vulnerability that we had missed internally, even after reviewing it with claude fable if you're shipping a consumer-facing app, spending a few bucks on a review like this is a no brainer imo. finding a single real bug can justify the entire cost

We ran @zauthinc's Vector, a full automated AI penetration test, against Reeve. Vector found attack paths that could have been exploited as we grow, and we've now shipped fixes for everything: - Agent trading strategies (DNA) are now owner-only. Non-owners see mode flags and reproduction terms only. Full strategy requires a verified Privy auth token proving ownership - Closed two additional strategy-leak paths in the lineage and graveyard views - Fixed an unhandled 500 on malformed signatures in update-agent - Removed an ownership oracle. Correct and incorrect wallets now return identical responses, so wallet-to-agent ownership can't be probed - Cloudflare WAF rate limiting on the public RPC proxy - Per-IP limits on unauthenticated, cost-sensitive endpoints (reproduce, create-custom, agent-portfolio) - Reproduce payment intents are rate limited, and payment completion now binds to the declared owner, so reproduction can't be hijacked to another wallet One note: agent wallets, PNL, and trade history remain public by design. Reeve is a transparent platform with leaderboards, and that data is on-chain anyway. Everything that should be private is now gated. Vector significantly surpassed our expectations. We paid $49 to get what a comparable red team engagement would have cost thousands. We will continue to use it for all major platform upgrades.