OpenAI Launches Patch the Planet to Address Open-Source Vulnerabilities

On June 22, 2026, OpenAI introduced 'Patch the Planet,' a collaborative initiative with Trail of Bits, HackerOne, and Calypso to enhance the security of open-source software. The program utilizes the GPT-5.5-Cyber model to identify and patch vulnerabilities, with initial findings including 8 Linux kernel pointer-leak proofs and multiple CVEs across popular platforms like Firefox and Safari. The initiative aims to assist maintainers overwhelmed by AI-generated vulnerability reports, providing expert human review and support. Initial projects include cURL, Python, and aiohttp, among others. The program is part of a broader trend towards AI-assisted security measures in response to increasing AI-driven cyber threats. Anthropic's Project Glasswing has also reported over 10,000 vulnerabilities, indicating a significant industry shift towards AI in cybersecurity.

Key Points: • OpenAI's 'Patch the Planet' initiative aims to fix vulnerabilities in open-source software. • Initial findings include multiple CVEs, such as CVE-2026-8390, and various exploits across major platforms. • The initiative addresses the challenge of AI-generated vulnerability reports overwhelming maintainers.