TL;DR
White House AI adviser David Sacks publicly defended restrictions on Anthropic’s Fable S model, saying a trusted partner found a jailbreak that restored cyber capabilities the government considered too dangerous. Anthropic disputes that account, saying officials provided no specific technical detail and that the observed behavior was minor and reproducible in other public models. The core evidence remains non-public, leaving users, developers and policymakers to weigh competing safety claims without an independent record.
White House AI adviser David Sacks said federal officials restricted Anthropic’s Fable S model after the company refused to fix or withdraw a jailbreak that he said restored dangerous cyber capabilities, while Anthropic says the alleged flaw was narrow, minor and not backed by specific technical evidence shared with the company.
Sacks, writing on X, said a "highly credible trusted partner" found a jailbreak of Fable S guardrails. In his account, the administration asked Anthropic Chief Executive Dario Amodei to fix the issue or pull the model, Amodei refused, and an export-control action followed "reluctantly." Sacks said the bypass restored "operability of a cyberweapon," a characterization he used to argue that treating the flaw as minor was indefensible.
Anthropic’s account is different. In a June 12 blog post described in the source material, the company said the government did not give specific technical detail, that the demo showed only a few minor and already-known flaws, and that other public models could produce similar outputs without a special bypass. Anthropic said a narrow potential jailbreak should not be the basis for recalling a model used by hundreds of millions of people.
The confirmed public record is limited to those competing public accounts and press reporting about who raised the issue. Semafor, in reporting carried by Fortune and others, said the trusted partner may have been Amazon and that Amazon Chief Executive Andy Jassy had contact with the administration. Amazon has not confirmed the specifics, and the government has not publicly named the partner.
The Safety Card, Played From Every Side
● ContestedA White House adviser says Anthropic refused to fix a cyberweapon jailbreak and got banned for it. Anthropic says the flaw is trivial. Almost every fact that would settle it is non-public — and “safety” is now the card every side is playing.
Both are claims, not findings. They don’t disagree on tone — they disagree on what the bypass actually is.
- A “highly credible trusted partner” found a jailbreak of Fable’s guardrails.
- The admin asked Amodei to fix it or pull the model. He refused.
- So the export control was issued — “reluctantly.”
- It restores operability of a cyberweapon; calling that “not serious” is indefensible.
- The government gave no specific technical detail.
- The demo found a few minor, already-known flaws.
- Other public models (incl. GPT-5.5) do the same without a bypass.
- A “narrow potential jailbreak” shouldn’t recall a model used by hundreds of millions.
Per reporting by Semafor (carried by Fortune and others), the entity that flagged the jailbreak was Amazon — with CEO Andy Jassy reportedly in contact with the administration. Amazon hasn’t confirmed specifics. Flagging a real risk is what a good partner does — but Amazon wears three hats at once, and none of them is neutral.
Each actor’s safety claim points toward its own advantage.
The entire evidentiary record is a matter of trusting parties who each have a reason to shade it.
A transparent, technically grounded, independently reviewable process — which is, notably, exactly what Anthropic says it wants, and exactly what would also constrain Anthropic. The reason to demand it isn’t loyalty to anyone; it’s that the alternative is decisions made on secret evidence and adjudicated in dueling press statements.
Independent commentary, produced with AI assistance under human editorial oversight; the views are the author’s own and may change. This is analysis and opinion, not investment, financial, legal, or technical advice, and it concerns an actively developing situation in which key facts are disputed and non-public. Claims attributed to David Sacks reflect his June 13, 2026 statement on X; claims attributed to Anthropic reflect its published statements; reporting on Amazon’s role reflects accounts published by Semafor and others — all read as of June 15, 2026, and presented as the claims of those parties, not as established fact. Characterizations are the author’s interpretation, offered in good faith and open to rebuttal. References to specific people, companies, and government actions are factual and analytical, not partisan, and imply no affiliation or endorsement.
Secret Evidence Shapes AI Rules
The case matters because it tests how far Washington can go in restricting a leading AI system when the security evidence is not available for outside review. A fast restriction could reduce risk if officials have reliable evidence of dangerous cyber capability. It also creates a precedent in which customers, competitors and researchers are asked to accept government and company statements without seeing the underlying test.
The dispute also cuts across commercial incentives. Anthropic has argued for stricter safety rules for powerful models, but in this case says the risk has been overstated. If Amazon was involved, as reported by Semafor, its position would be complicated: the company is an Anthropic investor and cloud provider, while also competing in AI models. None of that proves improper conduct, but it explains why an independent technical record matters.

Ai Engineering Made Practical: Build Reliable Ai Systems With Retrieval, Tools, Evaluation, Monitoring, And Safety—So Teams Ship Faster With Less Risk
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Mythos Claim Frames Fable
Sacks’s account turns on his description of Fable S as Mythos with guardrails. He said that if those guardrails fail, the model exposes capabilities Anthropic had previously described as requiring regulation. That claim is central because it frames the dispute not as a routine model bug, but as whether a protected version of a high-risk system became available to users who should not have access to it.
Anthropic’s response frames the same event as an overreaction to a narrow flaw. The company said the government did not share enough detail for a precise fix and that similar outputs can be obtained from other public models. Without the prompt path, access level, test conditions and scoring standard, outside experts cannot compare the two accounts.
“highly credible trusted partner”
— David Sacks, White House AI adviser, on X
AI model jailbreak detection software
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Evidence Still Stays Private
Several facts remain unknown. The government has not released the technical prompt path, reproduction steps, severity criteria, or a named independent evaluator. There is no public CVE, no published test report, and no independent assessment of whether the behavior is unique to Fable S or common across current public models.
The role of Amazon also remains unsettled. Reporting says Amazon may have flagged the issue, but the company has not confirmed that account. It is also unclear whether the restriction will stay in place until a patch, a new evaluation, a negotiated access change, or a formal appeal.

Mastering Google ADK: Build AI Agents with Gemini and Automate Real-World Workflows (Building Intelligent Agents: The Complete Framework Series Book 2)
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Patch Timing Tests Claims
The next signal will be the duration and terms of the restriction. If access returns quickly after a private patch, that would suggest the issue was specific enough to remediate, though it would not prove the original risk level. If the dispute continues, pressure will grow for a review process with shared technical criteria, independent testing and a public explanation that protects sensitive details while giving affected users a basis for trust.

Artificial Intelligence for Cybersecurity: Develop AI approaches to solve cybersecurity problems in your organization
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Key Questions
What is the actual news here?
Sacks publicly gave the most detailed government-side account so far of why officials moved against Anthropic’s Fable S model. Anthropic disputes his account and says the government has not shown a serious, model-specific flaw.
Has the Fable S jailbreak been proven publicly?
No. Based on the source material, the technical details, methodology and independent evaluation have not been made public. Readers are seeing competing claims, not a settled technical finding.
What role did Amazon play?
Semafor reporting carried by Fortune and others says Amazon may have been the trusted partner that flagged the issue. Amazon has not confirmed the specifics, and the government has not publicly named the partner.
Why is Mythos part of the dispute?
Sacks says Fable S is Mythos with guardrails, meaning a guardrail failure could expose capabilities Anthropic itself had treated as high risk. Anthropic says the observed behavior was minor and not unique to its model.
What should readers watch next?
Watch whether the restriction is lifted after a private patch, whether officials publish a reviewable technical basis, and whether an independent evaluator is brought in to test the competing accounts.
Source: Thorsten Meyer AI