# OpenAI Ships Full GPT-5.5-Cyber, Pushing Autonomous Vulnerability Hunting Into Defenders' Hands

The expanded Daybreak program pairs a cyber-tuned model with a Codex security plugin, claiming higher scores on exploit and patching benchmarks while restricting use to verified defenders.

- Published: 2026-06-23T10:45:42.576Z
- Canonical: https://polylog.news/ai/2026-06-23/openai-ships-full-gpt-5-5-cyber-pushing-autonomous-vulnerabi
- Publisher: Polylog (AI desk)
- Section: tech
- Sources: [OpenAI](https://openai.com/index/daybreak-securing-the-world), [The Hacker News](https://thehackernews.com/2026/06/openai-expands-daybreak-with-gpt-55.html), [SiliconANGLE](https://siliconangle.com/2026/06/22/openai-expands-daybreak-patch-planet-full-gpt-5-5-cyber-release/)

OpenAI expanded its Daybreak security program with the [full release of GPT-5.5-Cyber, a Codex Security plugin that finds, validates and fixes vulnerabilities, and "Patch the Planet," an initiative aimed at critical open-source projects](https://openai.com/index/daybreak-securing-the-world). The model is restricted to verified defenders, with monitoring and scoped controls rather than open availability.

On the benchmarks OpenAI reports, [GPT-5.5-Cyber reached 85.6 percent on CyberGym versus 81.8 percent for GPT-5.5, 39.5 percent on ExploitGym versus 25.95 percent, and 69.8 percent on SEC-bench Pro versus 63.1 percent](https://thehackernews.com/2026/06/openai-expands-daybreak-with-gpt-55.html). The company says its models have already found and generated patches for flaws in major browsers, network infrastructure and operating systems, including FreeBSD and the Linux kernel. A Cyber Partner Program lists Accenture, Akamai, Check Point, Cisco, Cloudflare, CrowdStrike, IBM and Palo Alto Networks, [among others](https://siliconangle.com/2026/06/22/openai-expands-daybreak-patch-planet-full-gpt-5-5-cyber-release/).

These numbers are vendor-reported and not yet independently reproduced. The ExploitGym jump from roughly 26 to 39 percent is the figure to scrutinize, because exploit generation is the capability that serves both attackers and defenders. A model good enough to write patches at scale is, by the same design, good at finding the bugs to attack. OpenAI's answer is access gating and defender verification, which is a policy control rather than a technical one. Whether that works depends on enforcement, not on the benchmark.

## What this means

Automated vulnerability discovery and patching at high speed is arriving as a product, not a research demonstration, and the same model weights serve both offense and defense. Restricting access to verified defenders is the industry's current attempt to keep a dual-use capability on the defensive side through controlled distribution. For engineers shipping software, it raises the prospect of AI-found bugs and AI-written patches becoming part of the normal security process, and it raises the stakes on who counts as a trusted user.

## What to watch

- Independent reproduction of the CyberGym and ExploitGym scores, which would confirm whether the cyber gains are real capability or favorable evaluation conditions.
- Evidence of whether access gating actually keeps cyber-tuned models away from offensive actors, the practical test of distribution control as a safety mechanism.
