UNIT 42’s hands-on with frontier AI models suggests a major shift in how quickly and at what scale vulnerabilities can be identified, moving beyond simple coding assistance to autonomous security research. The researchers warn of autonomous zero-day discovery, a collapsing patching window for N-days, and the ability to chain complex exploits with real-time adaptation to bypass hardened environments.
Open source software faces heightened immediate risk, as frontier models show strong vulnerability identification against source code but only marginal gains against compiled code. According to Anthropic, frontier AI models can identify vulnerabilities and attack paths with minimal human input, potentially accelerating the vulnerability discovery-to-exploitation cycle.
Unit 42 also predicts increases in large-scale supply chain compromises of OSS, citing recent TeamPCP and Axios JavaScript library incidents as context. To defend, the article urges aggressive prevention and response measures, including pushing for SBOMs, rapid patching, and time-to-deploy enforcement, noting the speed and scale of AI-enabled attacks require a shift from conventional threat management. Published: 20 April 2026.