Plutonic Rainbows

At 5:21 on Friday afternoon, Anthropic received a letter, and by that evening two of its models had vanished for everyone on the planet. Claude Fable 5 and Mythos 5, gone. The instrument was an export-control directive, the kind of authority built to keep advanced chips and weapons designs out of hostile hands. This time the administration pointed it at a chatbot.

The directive bars foreign nationals from using either model, including Anthropic's own foreign staff inside the United States. On paper that sounds narrow. In practice a company cannot sort its users by passport in real time, so the only way to comply is to switch the models off for everybody. A rule written to stop technology crossing a border became a global kill switch, and it worked in a single afternoon.

The stated reason is thin. The government believes someone found a way to jailbreak Fable 5, and that is most of what we have been told, because the letter carried no technical specifics. Anthropic, which actually saw the demonstration, says the technique exposed a small, already-known software vulnerability, the precise category of flaw that Fable's safety design was built to catch, and nothing a person couldn't already coax out of GPT-5.5. That last detail is the tell. The exact capability the administration judged too dangerous for Fable, which Anthropic says it had deployed to hundreds of millions of people, sits right now, unrecalled, inside a competitor's product. One model dies over a weekend; its functional twin stays online. That is not how a government acts when it has found a weapon. It is how one acts when it has found a lever.

This is the first time Washington has forced a commercial AI product offline, and the manner of it should worry people who have never touched Anthropic. The whole thing took three days from launch to recall, ran on what the company describes as verbal evidence, and arrived with no published finding and no chance to contest the switch before it was thrown. Calling it disproportionate is too polite. A government that can erase a widely used service over a weekend, citing a secret it will not show anyone, has found a tool far more useful to it than any jailbreak.

The lesson most people are drawing is about resilience, about not leaning on a single vendor. That is sensible, and it misses the point. The dependency that failed on Friday was not on Anthropic. It was on an administration choosing not to use a power it turns out to hold. Export-control law hands the executive enormous discretion and almost no duty to explain itself, and it has now been aimed at software that ordinary people had open in a browser tab. The company that spent the spring asking for a verifiable brake on frontier AI just found out what a brake feels like when someone else holds it. The rest of us get to wonder which model the off switch finds next.

The headline does the whole job before you reach the bottle. "The Classic American Beauty," it says, across a field of tall grass, and there she is in a white turtleneck, hair loose, no jewellery, no city in sight. The perfume sits small in the upper corner, almost an afterthought, a squat amber flask with a brass cap. Ralph Lauren had already learned the trick that made him rich. You don't sell the thing. You sell the world the thing lives in, and let people buy their way toward it one bottle at a time.

The bottle was Lauren, his first fragrance for women, and by the time this ad ran in 1990 it was already twelve years old. Lauren launched in 1978 alongside Polo for men, and the simultaneous release was itself a piece of strategy nobody had tried before. No designer had sent a men's and a women's scent into the world on the same day. Lauren talks about it now as if it were obvious, that his world held both, so the fragrances should arrive together. At the time it was a gamble dressed as common sense.

The original pitch made no attempt to describe a smell. The 1978 launch advertisement set a woman and two children beside a horse-drawn carriage in autumn light, a polo mallet in a boy's hand, and promised only that a fragrance could "capture a way of living, a certain timeless style." Introducing Lauren for women, the copy said, and the bottle sat in the corner like a detail you might overlook. The strategy was already complete twelve years before the turtleneck and the field; all the 1990 version did was swap the family for a single woman and make the country quieter.

So was the company he kept. He had been courted by Estée Lauder, the natural home for a designer scent, and turned them down for Warner Communications, the entertainment conglomerate that owned record labels and film studios. The two formed Warner/Lauren Ltd, and a media company with no perfume pedigree put out one of the most American fragrances ever made. The juice came from Bernard Chant, the perfumer behind Aramis and Estée Lauder's Aliage and Azurée, a man who built scents like architecture. Chant gave Lauren a green vegetal chypre, all rosewood and cedar and oakmoss, more forest floor than flower shop. Ben Kotyuk designed the flask. The whole thing was sold, with a straight face, as a "natural spray cologne," and that phrase tells you everything. Not perfume. Not parfum. Nothing French. A cologne, natural, the way a sweater is natural, the way a walk is natural.

Nothing about the grass and the turtleneck was accidental either. The pitch was wholesomeness, the open country, the woman who looks like she belongs to a family with land. In the two-page spread that ran in American Vogue that December, the fragrance barely registers and the woman is the entire argument. Everything Lauren wanted you to feel about the scent, he makes you feel about her instead.

The photograph hides a joke. The Classic American Beauty is Isabelle Townsend, and Isabelle Townsend was born in Paris. Her father was Group Captain Peter Townsend, the RAF officer whose romance with Princess Margaret became the great royal scandal of the 1950s, the equerry the palace could not let her marry. After Margaret, Townsend married a young Belgian woman, Marie-Luce Jamagne, and Isabelle was their daughter, raised speaking French and English, reading French and English literature at the Sorbonne between 1979 and 1982. By the time Ralph Lauren cast her as the face of his all-American dream, she had a British war hero for a father, a Belgian mother, a Paris childhood, and a literature degree from one of the oldest universities in Europe.

She signed an exclusive contract and became the brand's defining face for years. The American-flag sweater she wore down the runway in the autumn of 1989 turned into one of the house's permanent images, the kind of thing that gets reissued and reframed decades later. She worked with Bruce Weber and Richard Avedon and Peter Lindbergh, the same photographer who would soon argue that no single face could carry a whole decade. The campaign worked precisely because the Americanness was built rather than inherited. You assemble the myth out of whatever materials photograph well, and a Sorbonne graduate in a turtleneck photographs beautifully.

The fragrance had a quieter, sadder ending than the woman who advertised it. Through the 1990s the licensing passed to Cosmair, then to L'Oréal, and the formula got reworked more than once. Each version sanded a little more off the original, the oakmoss thinning, the strange earthy bitterness softening toward something safer. By the end of the decade Lauren was discontinued. Collectors now pay frightening prices for the early Warner/Lauren bottles, the ones that still smell the way Chant intended, while the thinned-out late versions ran down to clearance shelves on their way out of production.

What replaced it tells you how the whole industry changed. In 1998 Ralph Lauren launched Romance, and Romance took over as the flagship women's scent almost overnight. Where Lauren had been green and woody and a little severe, Romance was a soft rosy floral built for a younger buyer, the sort of scent that sells by the truckload at a department-store counter. The austere green chypre belonged to the 1970s; the warm floral was made to be liked, and liked sells. The brand survived the swap without a scratch, because the brand was never really about the smell. It was about the field, the turtleneck, the woman who looked like she had somewhere green to go.

Lauren the perfume is gone, reformulated into a memory and then out of production entirely. Isabelle Townsend left modelling for acting and the stage, turned up in a Whit Stillman film and a few theatre productions, and mostly stepped out of the picture she had defined. The picture outlasted them both, and it still works on whoever turns the page, which is the strange mechanics of a manufactured image: the more of it you can prove was invented, the better it does its job.

Steven Spielberg has spent nearly fifty years pointing at the sky and refusing to tell us exactly what's up there. Close Encounters of the Third Kind ended at the moment of contact and then cut away, trusting that the withholding was the point. Disclosure Day, which I flagged back when it was only an announced return to UFOs, premiered in Paris on June 2 and opens in American theatres on June 12, and it takes the opposite bet. This time the evidence isn't hidden. It's dumped on all eight billion of us at once.

The premise is the most interesting thing about the film, and possibly its trap. Spielberg told CBS News that the story imagines "what would happen if they decided to do a data dump across the entire world all at once," with a shadowy faction trying to stop the release. He's called it a bookend to Close Encounters, and he isn't shy about why the subject still grips him: "I absolutely think that they have been here, and they are here." Whatever you make of that as a worldview, it gives the movie a conviction that a lot of effects-driven spectacle lacks.

Emily Blunt anchors it as Margaret Fairchild, a Kansas City weathercaster who starts the film as an ordinary professional and then, after a CGI cardinal flies into her apartment, begins speaking in languages she's never learned and receiving classified information out of the air. Josh O'Connor plays the cybersecurity expert carrying the proof; Colin Firth, Eve Hewson, and Colman Domingo fill out a cast that, on paper, has no business being this deep for a chase movie. David Koepp wrote the screenplay, Janusz Kamiński shot it, and John Williams scored it, so the craft pedigree is exactly what you'd expect from an Amblin production at a reported $115 million.

I'm writing the day before wide release, off the festival premiere and the critics who caught preview screenings, so this is a read on the film and its reception rather than a seat-in-the-theatre verdict. The early split is the interesting part, more telling than any single rave or pan.

The enthusiasts are loud. The first social-media reactions, collected by The Hollywood Reporter, ran to "Spielberg's best film in 20 years" and "a dense roller coaster ride blending chase film, love story, and mystery." Blunt, talking to Empire, made the Close Encounters connection explicit: "There are definitely questions posed by Close Encounters that are answered in Disclosure Day." That line is either a thrill or a warning, depending on how much you believe those questions were better left open.

Den of Geek landed in the warm middle at 3.5 out of 5, framing the film as a coda to a lifetime of alien movies and a king returning to his throne. Their critic's point is worth sitting with: this isn't the ecstatic awe of Close Encounters, the sweetness of E.T., or the dread of War of the Worlds. It's something older and calmer, a storyteller circling back to his favourite question with the equanimity of someone who no longer needs to dazzle you to make it land.

Then there's the cold end, and it's pointed. The Los Angeles Times critic Amy Nicholson wrote that the aliens are here but the wonderment isn't, and her diagnosis cuts to exactly the bet I opened with. The film, she says, "speeds around frantically, talking constantly and explaining little," where Close Encounters was "a popcorn masterpiece of withheld information." That's the risk baked into the whole concept. If your subject is total disclosure, you've thrown away the very thing that made the 1977 film hum, which was the ache of not knowing.

I lean toward thinking Nicholson has found the real fault line, even if she's harder on the movie than I'd probably be. Mystery is cheap to evoke and expensive to pay off. Spielberg built his reputation partly on never quite paying it off, on the shark you don't see and the light behind the mountain. A film whose entire engine is the release of proof is structurally committed to showing you everything, and showing everything tends to shrink it. Rolling Stone's David Fear caught the same doubleness from a friendlier angle, calling it a kind of career retrospective in miniature, full of traces of Duel and Minority Report, not top-tier Spielberg but more than enough of his presence to warrant the ticket.

The timing is its own character. The film arrives into a real-world disclosure movement, the Pentagon dribbling out declassified reports and grainy footage of things nobody will name, and Spielberg has clearly read the room. A movie premised on a government hoarding eighty years of proof doesn't have to work hard to feel plausible right now. That tailwind probably helps the box office and complicates the art, because it's easier to make a conspiracy thriller land when half the audience already suspects the conspiracy is real.

Disclosure Day lands, a day out, somewhere short of the best-in-twenty-years raves and well clear of the LA Times' near-dismissal: a confident, well-made film that explains a little too much, the work of a director with nothing left to prove and one last thing he wants to say about the sky. I'll see it this weekend, and my bet is the warm, qualified middle, which is no bad place for a fifth alien movie to land.

A day after Claude Fable 5 went public, the verdict is roughly what Anthropic would have wanted, with a couple of asterisks it probably expected too. The benchmark sweep got the headlines: state-of-the-art on nearly everything Anthropic tested, a million-token context window, and a price that landed lower than the run-up suggested. Fable runs $10 per million input tokens and $50 per million output, less than half what the Mythos Preview cost. For a frontier release, cheaper-than-feared is its own kind of good review.

The enterprise side was already leaning this way. The May Ramp AI Index, built from corporate-card and invoice data across more than 50,000 US companies, put Anthropic at 34.4 percent of business adoption against OpenAI's 32.3. That isn't a Fable number, it predates the launch, but it explains the confidence. Anthropic shipped into a market that had already started picking it.

Then the criticism, and most of it is sensible rather than reflexive. The sharpest complaint is about the safety routing. The trapdoor I wrote about yesterday, the classifiers that bounce flagged requests down to Opus 4.8, turns out to fire on more than the obvious bad actors. The SANS Institute's Rob T. Lee found routine incident-response and forensic work getting redirected to the weaker model, which is exactly the false-positive problem you'd predict when a cyber classifier can't tell a defender from an attacker. Anthropic calls the safeguards "intentionally conservative" and admits the false positives. That's honest, but honesty doesn't hand a security team back the capability it's paying for.

The other recurring jab is older: that Anthropic talked up Mythos as too dangerous to release, then released a tamed version anyway, and that the danger talk did some useful marketing along the way. I'm half-persuaded. The pause-button proposal from earlier this week carried the same double image, a real safety argument and a competitive position sharing one stage. You can believe the risk is genuine and still notice it sells.

The pricing is where I think the consensus has it backwards. On the subscription plans (Pro, Max, Team, Enterprise) Fable is free through June 22, and after that, usage runs on credits. The easy read is a bait-and-switch: free trial, then the meter starts. I don't think that's what the wording actually says. Anthropic frames the cutoff around capacity, not price. The announcement says that "if capacity allows" it will extend the included window, and that it aims to "restore Fable 5 as a standard part of subscription plans" once supply catches up. That is not the language of a permanent paywall. It reads like a company that underprovisioned a launch and is rationing compute until the racks catch up.

So June 22 isn't a cliff. It's a soft cap, demand outran the hardware and the cap lifts when the hardware arrives, and the credit requirement is a throttle wearing a price tag. The promise worth holding them to is the exact phrase, "a standard part of subscription plans." It's specific enough to check in July, when we'll know whether the included window actually came back or whether capacity stayed conveniently scarce.

The name set in Roman capitals across the bottom of this January 1989 page of American Vogue belonged to nobody's idea of a celebrity designer. Umberto Ginocchietti owned a knitwear operation in Perugia, and when the New York Times had introduced him to American readers two years earlier, it led with the trade fact rather than the label: here was a mill owner whose fabrics went out under the names Giorgio Armani, Claude Montana and Krizia.

Umbria was full of stories like his. The region's knitwear district grew out of Luisa Spagnoli's angora workshops and ended up clothing half of Europe; one regional trade history puts it with wonderful bluntness: in 1975-80, Umberto Ginocchietti was the pullover in Germany. Between 1985 and 1990 the cashmere business followed, pulled away from Britain by Italian spinning technology, and suddenly the quiet suppliers of Perugia had reason to want their own names on the page.

Buying recognition meant hiring a recognisable face, so here is Cindy Crawford, all sunlit hair and white embroidered knit, carrying an unfamous name toward famous company. She was a year away from the February cover moment that fixed her place in the decade ahead, and she gives the page more warmth than the louder knitwear of that season ever asked for.

My favourite part sits in the top corner, where the ad lists its two American stockists like a parish notice: Antoinette of Santa Barbara, Charles Sumner of Boston and Chestnut Hill, with a telephone number tucked under the logo. A Perugian mill, the most photographed woman of the next decade, and a shop you could ring in Massachusetts.

Reports now put a public version of Claude Mythos a day away, with several outlets pointing to a June 10 release. I'd treat the date as soft. Anthropic has said since the May 28 Opus 4.8 announcement that it expects to bring Mythos-class models to all customers "in the coming weeks," and "coming weeks" is the kind of phrase that quietly absorbs a missed Tuesday.

What's not soft is the gap between the model going public and the model that spent the spring inside Project Glasswing. Mythos earned its restriction. In Anthropic's own testing it produced working exploits 72.4 percent of the time, against roughly zero for Opus 4.6. Pointed at open source, it scanned more than a thousand projects and surfaced over 23,000 flaws, 6,000-plus rated high or critical, including a certificate-forgery bug in wolfSSL that reaches billions of devices. That one's patched. Plenty won't be by tomorrow.

So the public release isn't that model. The version heading to general customers carries heavier guardrails and deliberately narrowed cybersecurity functions. The full capability stays behind the Glasswing fence, where access just widened to roughly 200 organisations across more than fifteen countries.

Which puts a familiar question back on the table, the one I had when Mythos moved into infrastructure: who decides where the fence sits? Somebody is sorting the world into the two hundred organisations that get the live model and everyone who gets the muzzled one, and Anthropic frames that sorting as a safety phase. A two-tier capability looks less like a phase the longer it holds, and nobody has named the condition that ends it.

Opus 4.8 was the bridge, the public model that inherited part of the capability without the teeth, and tomorrow's release looks like the same trade made explicit. Anthropic's defence is that none of this lasts: it expects Mythos-level capability to be widely available across the field within six to twelve months, attackers included. That forecast is convenient as well as plausible, since inevitable diffusion is the argument that justifies shipping now rather than holding back. If it's right, the guardrails matter less than they look. The fence holds until someone else sells the gap.

Anthropic shipped Claude Fable 5 today. The benchmark numbers will get the headlines; how its safety actually works is the more interesting story, and it's stranger than the rumors suggested.

Fable 5 and Claude Mythos 5 are the same model. Not sibling models, not a distilled cousin, the same weights. Anthropic says so plainly: Mythos 5 is "the same underlying model as Fable 5, but with the safeguards lifted in some areas." Fable is what the public gets; Mythos stays behind Project Glasswing for vetted cybersecurity partners. The difference between the dangerous one and the safe one is a set of switches.

Those switches are runtime classifiers. Three of them, watching for cyber-exploitation, dual-use biology and chemistry, and attempts to distill the model's capability out of it. When a classifier trips, the request isn't refused so much as rerouted: it falls back to Opus 4.8. So Fable isn't a weaker Mythos. It's the full model with a trapdoor underneath, and Opus 4.8 is what's at the bottom of it. Anthropic says more than 95 percent of Fable sessions never trip a classifier at all.

That reframes the worry I had this morning about a permanent two-tier split, the handful of vetted partners who get the unmuzzled model and everyone else who doesn't. The split is real. But it isn't really two tiers of model. It's one model and a classifier deciding, request by request, which version of itself you're talking to. Whether that's reassuring depends entirely on how good the classifier is, and a gate that fires on fewer than five percent of sessions is a gate that mostly isn't firing.

Pricing landed lower than the run-up suggested. Fable 5 runs $10 per million input tokens and $50 per million output, which Anthropic notes is less than half what the Mythos Preview cost. It's available globally today through the API, the web app, and the subscription plans, free on Pro, Max, Team, and Enterprise through June 22, then on usage credits after that while capacity catches up.

The capability claims arrive in the usual flood, all of them sourced to launch partners, so read them as the vendor's best day rather than yours. Stripe says Fable compressed months of engineering into days on a fifty-million-line Ruby codebase; Mythos 5 reportedly sped up parts of a drug-design pipeline roughly tenfold. Both are the kind of figure that sounds precise and resists checking. The ones I trust more are the daft-sounding ones: the model beat Pokémon FireRed on vision alone, no helper tools, and in Slay the Spire its persistent memory roughly tripled its long-run performance over Opus 4.8. Game-playing reads like a toy benchmark until you remember it's a clean test of holding a plan across thousands of steps.

Strip the framing away and Fable is a frontier model Anthropic doesn't fully trust in the open, shipped anyway, with a classifier and an older model underneath to catch what slips. That's honest engineering. It's also a bet that the classifier is smarter than everyone who'll spend the next year trying to walk around it.

Open the December 1988 American Vogue and Escada doesn't ask for attention, it assumes it. Margaretha Ley built the house on exactly this: the finest fabrics, cashmere and silk and heavy wool, then loaded with print until every surface had a job. Anna Wintour had taken the editor's chair only that year, and the issue still carried the loud confidence of the pre-crash decade.

The whole philosophy sits in this riot of black blooms across yellow silk, a black sash pulling the noise into a waist. More was the argument, not the excess. Restraint came later, and Escada was never really interested.

Romeo Gigli showed his spring 1990 collection in Paris, and the moment that survived was not a silhouette but a sound. Kirsten Owen came out wrapped in a fringe of large glass beads, the kind blown on Murano in the Venetian lagoon, with long pendant earrings and a glass diadem set into her hair. Tim Blanks, returning to the show decades later, described her as the model embodiment of Gigli's fragile, romantic ideal, and wrote that she could have been the Byzantine empress Theodora. The beads tinkled like wind chimes while she walked. Then they began to shatter.

That detail is the whole argument of the collection in miniature. Gigli was reaching back to Venice as a former Byzantine province, pulling a thousand years of craft into a runway, and the material refused to behave like a costume. Glass is not a sensible thing to hang on a moving body. It rings, it catches light, and it breaks. He used it anyway, because the breaking was part of the point. Beauty that survives intact is just decoration. Beauty that comes apart as you watch is something closer to an event.

Gigli's reputation rested on this kind of soft refusal. While the late eighties were busy with power shoulders and hard tailoring, he was making cocoon coats, cutaway jackets that skimmed rather than gripped, high-waisted trousers as skinny as leggings, and skirts that swaddled the legs in a tulip shape. The palette ran to jewel-toned silks, earthy velvets, shadowy chiffons and gilded gauzes. It read as romantic, even nostalgic, but the construction underneath was precise. He was not draping fabric for atmosphere. He was building a quieter proposition about how a woman might occupy space without armouring herself into it.

There is a useful contrast with Azzedine Alaïa's almost exactly contemporary work, where the body was mapped and held by seaming engineered to the millimetre. Alaïa controlled the body through tension. Gigli let it dissolve into folds and shadow. Both were arguing against the decade's appetite for rigidity, but from opposite ends. One sculpted, the other veiled. The Murano beads belong to the veiling instinct, a surface that hides as much as it shows and announces its own fragility while doing so.

The show was his Paris debut and it landed at the peak of his influence, with a standing ovation. That timing is worth sitting with, because the peak was already close to the edge. Gigli had launched his label in 1983, with production handled by Zamasport from 1985, and by 1991 the structure around him fractured. He split from his business partners Donato Maiano and Carla Sozzani in a traumatic separation that dragged on for more than a decade, the kind of dispute that slowly separates a designer from his own name. The Gigli trademark was eventually sold to IT Holding in 1999. The romantic who made glass sing in 1990 spent much of the rest of the decade in litigation over who got to use the word that was his surname.

I find the spring 1990 show more moving for knowing that. It is not just a pretty piece of Byzantine revivalism. It is a designer at his most assured, making a material that was guaranteed to break, in the same few years that his own commercial footing was about to. The beads shattering on the runway look, in retrospect, less like a flourish and more like a forecast nobody in the room could have read. The same instinct that built something exquisite and doomed into a single walk was the one the business could not protect.