"Daybreak combines the intelligence of OpenAI models, the extensibility of Codex as an agentic harness, and our partners across the security flywheel to help make the world safer for everyone. Defenders can bring secure code review, threat modeling, patch validation, dependency risk analysis, detection, and remediation guidance into the everyday development loop so software becomes more resilient from the start."
"Daybreak leverages Codex Security to build an editable threat model for a given repository that focuses on realistic attack paths and high-impact code, identify and test vulnerabilities in an isolated environment, and propose fixes. The effort is built on the foundations of three models: GPT-5.5, GPT-5.5 with Trusted Access for Cyber, and GPT-5.5-Cyber."
"Access to the tooling remains tightly controlled for now, with OpenAI urging interested organizations to request for a vulnerability scan or contact its sales team. Like Anthropic's Mythos, the idea is to leverage AI to tilt the balance in favor of defenders and help detect and address security issues before they are found by bad actors."
"Several major companies like Akamai, Cisco, Cloudflare, CrowdStrike, Fortinet, Oracle, Palo Alto Networks, and Zscaler are already integrating these capabilities under the Trusted Access for Cyber initiative, OpenAI said, adding it's working with industry and government partners to deploy "more cyber-capable models" in the future."
Daybreak is a cybersecurity initiative that combines frontier AI model capabilities with Codex Security to help organizations identify and patch vulnerabilities early. It aims to integrate secure code review, threat modeling, patch validation, dependency risk analysis, detection, and remediation guidance into everyday development workflows. The tooling builds an editable threat model for a repository, focusing on realistic attack paths and high-impact code, then identifies and tests vulnerabilities in an isolated environment and proposes fixes. The initiative uses GPT-5.5, GPT-5.5 with Trusted Access for Cyber for verified defensive work, and GPT-5.5-Cyber for permissive red teaming and controlled validation. Major security and tech companies are already integrating capabilities under Trusted Access for Cyber, with plans to deploy more cyber-capable models with industry and government partners.
Read at The Hacker News
Unable to calculate read time
Collection
[
|
...
]