Project Glasswing is now Day 38 without the public evidence it promised. The paper's Thursday brief on Day 37 counted the absence: no CISA artifact, no Linux Foundation follow-on paper, no member-disclosure table. Friday changes the number, not the condition.

Anthropic's launch page describes Glasswing as an effort to use advanced AI models to help secure open-source software with major partners. [1] Its project page advertises the ambition in language meant for trust: defensive work, partner access, vulnerability discovery, and public learning. [2] The Linux Foundation's announcement sharpened the bargain by saying Anthropic would report publicly within 90 days on what was learned and which fixes could be disclosed. [3]

That promise is the reason the silence matters. A private consortium can do useful work behind closed doors. A public-interest consortium that invokes open source, critical infrastructure and national cyber defense owes the public artifacts on a schedule. Day 38 is not late against the July deadline. It is late against the rhetoric of a project that asked readers to accept access first and evidence later.

CSO's account of CISA being last in line for access to Anthropic's Mythos model made the institutional problem sharper. [4] If the federal cyber agency is not the first public custodian of the work, then the public record has to carry more weight. Without that record, readers cannot tell whether Glasswing is producing vulnerability fixes, partner privilege, procurement positioning, or all three.

The divergence is not subtle. Mainstream launch coverage treats Glasswing as an AI-for-security consortium. X treats it as a closed room in which AI labs and their preferred partners decide what counts as cyber defense. The paper's position sits between them: the consortium may be valuable, but the value cannot be audited until artifacts exist.

The word "artifact" is not newsroom decoration here. It means a public report, a vulnerability disclosure, a Linux Foundation remediation note, a CISA advisory, or a member table that says who received access and on what terms. Any one of those would change the story. None has appeared.

The next honest clock is Day 40, then Day 50, then July 6. Anthropic does not fail the promise until the deadline passes. But every day without a public document changes the reader's burden. Open-source security is supposed to make verification cheaper for people outside the room. Glasswing, so far, asks outsiders to wait while insiders work. Trust us is not an open-source security model. It is a press strategy.

-- ANNA WEBER, Berlin