Cybersecurity researchers aren’t happy about the guardrails on Anthropic’s Fable
Cybersecurity researchers are complaining that Anthropic's new model Fable has guardrails that are too strict for any cybersecurity work.
Anthropic released its latest model Fable on Tuesday, billing it as a public and limited version of its powerful and much-hyped cybersecurity model Mythos.
But not everyone is happy with the restrictions, and a number of cybersecurity researchers and professionals have aired complaints online.
“[Fable] rejects any request that could be tangentially cyber related. Even innocuous tasks like reading a blog post,” said Valentina “Chompie” Palmiotti, a well-known security researcher who works at IBM X-Force.
When a prompt triggers its guardrails, Fable pauses the chat and says that its “safety measures flagged this message for cybersecurity or biology topics.”
The guardrails were put in place to limit the risk that Fable could be used to develop malware or compromise software — a long-standing concern within Anthropic. The restrictions on biology come from a similar concern around developing biological weapons .
When the AI giant released Mythos in April, it restricted the model to a limited number of companies and organizations in what it called Project Glasswing , an effort to deploy the model to secure critical software and infrastructure. Last week, Anthropic expanded access to Mythos to hundreds of organizations in 15 countries.
But despite the good intentions, many cybersecurity experts are still put off by the haphazard nature of the restrictions. Matt Suiche, a cybersecurity veteran, told TechCrunch that “if you ask it to write secure code, it assumes it is cybersecurity related work instead of software engineering best practices, and you get downgraded.” Fable is programmed to fall back to Claude Opus 4.8 if it hits a guardrail. “It seems to be keyword based, so anything in the lexical field of ‘cybersecurity’ triggers the guardrails.”
Contact Us Do you have more information about how hackers are using AI? Or how cybersecuity companies are using AI? We’d love to hear from you. From a non-work device and network, you can contact Lorenzo Franceschi-Bicchierai securely on Signal at +1 917 257 1382, or via Telegram and Keybase @lorenzofb, or email .
“But it is understandable as we are still in the early days and they are still adapting their guardrails. I am sure they are going to evolve over time as Anthropic and other frontier model companies will collaborate more with the current new generation of cybersecurity companies,” said Suiche, who is a member of the technical staff at Tolmo, an AI cybersecurity startup. “It’s better to catch more people than not enough when you do such a release and to relax the guardrails over time.”
Another researcher griped on X that “even asking for a code review” triggers Fable’s guardrails.
Anthropic did not immediately respond to a request for comment.
Apart from guardrails inside its models, Anthropic requires cybersecurity professionals to apply to the Cyber Verification Program . If they get approved, the applicants have fewer limitations on using Claude for cybersecurity work. OpenAI has a similar program called Trusted Access for Cyber .
When you purchase through links in our articles, we may earn a small commission . This doesn’t affect our editorial independence.
Lorenzo Franceschi-Bicchierai is a Senior Writer at TechCrunch, where he covers hacking, cybersecurity, surveillance, and privacy.
You can contact or verify outreach from Lorenzo by emailing lorenzo@techcrunch.com , via encrypted message at +1 917 257 1382 on Signal, and @lorenzofb on Keybase/Telegram.
Get an inside look at what it takes to scale and succeed from leaders at Mach Industries, Founders Fund, and Shinkei Systems. Through candid fireside chats and high-impact networking, you’ll walk away with valuable insights and new connections.
Google just fired a warning shot in the AI subscription price wars Lucas Ropek Connie Loizos
Google just fired a warning shot in the AI subscription price wars
Google just fired a warning shot in the AI subscription price wars
WWDC 2026: Everything announced on Siri AI, iOS 27, Apple Intelligence, and more Morgan Little Aisha Malik
WWDC 2026: Everything announced on Siri AI, iOS 27, Apple Intelligence, and more
WWDC 2026: Everything announced on Siri AI, iOS 27, Apple Intelligence, and more
Anthropic’s Claude Fable 5 is a version of Mythos the public can access today Rebecca Bellan
Anthropic’s Claude Fable 5 is a version of Mythos the public can access today
Anthropic’s Claude Fable 5 is a version of Mythos the public can access today
It’s not FAANG anymore. It’s MANGOS. Julie Bort
Microsoft’s open source tools were hacked to steal passwords of AI developers Zack Whittaker
Microsoft’s open source tools were hacked to steal passwords of AI developers
Microsoft’s open source tools were hacked to steal passwords of AI developers
Google will pay SpaceX $920M per month for compute Sean O'Kane
Google will pay SpaceX $920M per month for compute
Google will pay SpaceX $920M per month for compute
Mira Murati steps back into the spotlight, carefully Connie Loizos
Mira Murati steps back into the spotlight, carefully
Mira Murati steps back into the spotlight, carefully
Key takeaways
- Fable's restrictions may limit the effectiveness of AI tools in cybersecurity.
- Collaboration between tech companies and security experts is essential for developing effective solutions in Brazil.
- The evolution of the guardrails will be crucial to ensure that AI can be effectively utilized without compromising safety.
Editorial analysis
The dissatisfaction of cybersecurity researchers with Anthropic's Fable model restrictions highlights a crucial dilemma at the intersection of artificial intelligence and digital security. In Brazil, where cybersecurity is an increasing concern, especially with the rise of cyberattacks, the ability to leverage AI tools to strengthen defenses is vital. However, the rigidity of the guardrails may limit the effectiveness of these tools in a context where adaptability and innovation are essential.
The criticisms of Fable reveal a common challenge faced by AI developers: balancing safety and utility. While the intentions behind the restrictions are understandable, excessive application can lead to frustration and distrust among professionals in the field. This is particularly relevant in Brazil, where collaboration between tech companies and security experts is crucial for developing robust and effective solutions.
The future of cybersecurity in an increasingly digital world will depend on companies like Anthropic's ability to adjust their approaches. The evolution of the guardrails, as suggested by experts, will be crucial to ensure that AI can be effectively utilized without compromising safety. The interaction between AI companies and cybersecurity startups in Brazil may serve as an important indicator of how these technologies will develop and integrate into the local ecosystem.
Finally, it is important to observe how Anthropic and other AI companies will respond to feedback from the cybersecurity community. The willingness to adapt their technologies may not only improve market acceptance but also contribute to a safer and more resilient digital environment in Brazil and beyond.
What this coverage includes
- Clear source attribution and link to the original publication.
- Editorial framing about relevance, impact, and likely next developments.
- Review for readability, context, and duplication before publication.
Original source:
TechCrunch AIAbout this article
This article was curated and published by AIDaily as part of our editorial coverage of artificial intelligence developments. The content is based on the original source cited below, enriched with editorial context and analysis. Automated tools may assist with translation and initial structuring, but publication decisions, factual review, and contextual framing remain editorial responsibilities.
Learn more about our editorial process