Anthropic launches Claude Code Security, an AI tool that scans code for vulnerabilities and suggests how to address them.
Anthropic has introduced Claude Code Security, a new AI-powered service designed to scan software codebases for vulnerabilities and recommend fixes. Built into Claude Code, the tool aims to help teams detect and remediate security flaws faster. The capability is currently being rolled out in a limited research preview for Enterprise and Team customers.
“Claude Code Security, a new capability built into Claude Code on the web, is now available in a limited research preview. It scans codebases for security vulnerabilities and suggests targeted software patches for human review, allowing teams to find and fix security issues that traditional methods often miss.” reads the announcement published by Anthropic.
Claude Code Security is designed to discover complex, high-severity software vulnerabilities. Unlike traditional rule-based scanners, it analyzes code like a human researcher, focusing on data flows, understanding component interactions, and catching issues others miss. Each finding undergoes multi-stage verification, is assigned a severity and confidence rating, and appears in a dashboard for human review.
“Every finding goes through a multi-stage verification process before it reaches an analyst. Claude re-examines each result, attempting to prove or disprove its own findings and filter out false positives.” continues the announcement. “Findings are also assigned severity ratings so teams can focus on the most important fixes first.”
Currently in limited research preview for Enterprise, Team, and open-source maintainers, it empowers defenders while ensuring responsible deployment.
Claude Code Security leverages over a year of research into Claude’s cybersecurity skills. Tested in Capture-the-Flag events and in partnership with Pacific Northwest National Laboratory, Claude has been refined to detect and patch real vulnerabilities. Using Claude Opus 4.6, the team discovered 500+ long-undetected bugs in open-source projects. Now, Claude Code Security brings these defensive capabilities to Enterprise, Team, and open-source maintainers, letting teams review findings and iterate on fixes directly within familiar tools.
“This is a pivotal time for cybersecurity. We expect that a significant share of the world’s code will be scanned by AI in the near future, given how effective models have become at finding long-hidden bugs and security issues.” concludes Anthropic. “Attackers will use AI to find exploitable weaknesses faster than ever. But defenders who move quickly can find those same weaknesses, patch them, and reduce the risk of an attack.”
Anthropic is launching a limited research preview of Claude Code Security for Enterprise and Team customers, with early access and collaboration. Open-source maintainers can apply for free, expedited access.
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, Claude Code Security)
