Claude Security

Overview

Claude Security is Anthropic’s repository-scale code-vulnerability scanning product, distinct from Claude Code Security. Launched in public beta on April 30, 2026, it is powered by Claude Opus 4.7 and positioned as a CISO-and AppSec-team product for scanning entire repositories, directories, or branches with reasoning over large codebases and complex dependency chains. The product targets enterprise CISO and AppSec orgs rather than individual developers, marking Anthropic’s entry into the security-SaaS market.

Timeline

• 2026-05-04-AI-Digest — Claude Security moves from research preview to public beta on April 30, built on Claude Opus 4.7 and aimed at CISO orgs and AppSec teams. Scans entire repositories or specific directories/branches with reasoning over large codebases and complex dependency chains rather than per-file static analysis. One of three Anthropic announcements in a single product week (alongside Claude for Creative Work connectors and Claude Personal Guidance sycophancy research).

Key Developments

1. CISO-Tier Product Positioning: Claude Security targets CISOs and AppSec teams rather than individual developers, positioning vulnerability scanning as an enterprise security platform capability rather than a developer tool. Contrasts with Claude Code Security, which is integrated into Claude Code for developers.

2. Codebase-Scale Reasoning: The product emphasizes reasoning over large codebases and complex dependency chains as its differentiator vs traditional per-file static analysis, leveraging Claude Opus 4.7‘s long context (1M tokens) and multi-step reasoning for security analysis.

3. Three-Front Product Week: Claude Security GA is one of three Anthropic announcements in the week of April 28–May 3: (1) Claude Security on April 30, (2) Claude for Creative Work with nine first-party connectors on April 28, (3) Claude Personal Guidance sycophancy research on May 3. Signals the “agentic platform, not a model API” positioning across three distinct buyer audiences (CISO, designers, model-trust researchers).

4. Commercial Enterprise Wedge: Launches as complement to Claude Code Security (developer-integrated, Enterprise-gated) and Claude Mythos Preview (Glasswing-gated federal infrastructure). Claude Security occupies the AppSec-buyer tier, expanding Anthropic’s security-product footprint across buyer tiers without cannibalizing existing tiers.

Related

See also: Claude Code Security, Claude Opus 4.7, Anthropic, MOC - Agent Security