Multiple reports say the U.S. Cybersecurity and Infrastructure Security Agency (CISA) is using Anthropic’s “Mythos” system as part of efforts to audit government software code. The scanning is reportedly carried out by CISA’s Attack Surface Evaluation team, according to sources cited by the outlets. The reporting describes the activity as code auditing or scanning intended to identify security-relevant issues within government code bases. While the articles focus on the use of Mythos, they do not provide full technical details of how the system is integrated, what specific code repositories are involved, or what the outputs are used for in downstream security processes. The sources quoted across the reports indicate the arrangement and scope are still being developed or remain limited to specific evaluation workstreams. None of the cited summaries include confirmed information on contractual terms, performance metrics, or whether the tool is used alongside other automated or human review methods.