Plutonic Rainbows

There's an Armani everyone remembers, and it isn't this one. The Armani everyone remembers is cut from charcoal wool, has a pinstripe somewhere on it, and lets the jacket's shoulder do most of the talking. The one walking the Milan runway in October 1987, for the Spring/Summer 1988 collection, is a different animal. Cream silk. Draped across the body like something half-borrowed from antiquity. No shoulder to speak of. The jacket-as-engine idea from American Gigolo isn't what this is doing.

The house's own memory agrees. Armani's official Archivio holds the Fall/Winter 1988 womenswear collection in full, look by look, with fabric notes and source references attached. The Spring/Summer season that came six months earlier isn't there. I don't mean the entries are thin. I mean there's no entry.

The photographic record exists. Getty holds a Donato Sardella runway photo from that exact show, credited to WWD. Aldo Fallai shot Burke Hudson in the season's menswear and the prints surface on fashion blogs and dealer archives. So the collection happened, it was documented by the people whose job was to document it, and then the house itself chose to leave it out of its own memory.

That's the kind of gap I find interesting. Not a conspiracy, just a quiet self-edit. Designers edit their own legacy all the time, usually toward whichever work the house wants people to think about now.

Which is odd here, because the power suit is really a cultural projection. Mostly American, mostly Richard Gere's fault. Armani was planted firmly on the restraint side of the Italian ready-to-wear split, against everything Versace was doing across town, but the restraint wasn't ever really in the shoulder. It was in the fabric, the palette, the refusal to decorate. Which is another way of saying the silk in this photograph is closer to the centre of the Armani register than the pinstripe is.

The fabric falls across one shoulder and pools at the hip, draped like a chiton, pale like sun-bleached stone. It's borrowed light. A designer whose actual signature is soft drape shouldn't need to hide a season that makes the case so clearly. Unless the case makes another problem more visible.

I've been turning over why the house skipped this season. The simplest answer is that Fall/Winter is easier to museum. Wool, structured at the shoulder, architecturally clean. The kind of collection you can hang on a mannequin and photograph under gallery light. Spring/Summer is lighter, harder to display. Silk instead of wool. Photographs well in motion and badly in a case.

And the silhouette here is close to what Azzedine Alaïa was doing a couple of years later, the same body-conscious fluidity, the same refusal to treat the shoulder as a load-bearing piece. Armani and Alaïa are usually filed into different boxes — suits versus bodies, Milan versus Paris, restraint at war with sensuality — and I'm not sure either box holds up once you put these two seasons next to each other. The Armani in this photograph would slot into an Alaïa retrospective and nobody would flinch.

Maybe that's why the house left it out. Too close to someone else's territory.

Sources:

• Giorgio Armani Womenswear Fall-Winter 1988 — Archivio Armani

• Giorgio Armani Spring 1988 Ready to Wear Runway Show — Getty Images

OpenAI announced this week that it's building a cybersecurity product. Not a new model, a product, layered on existing capabilities, delivered through its Trusted Access for Cyber pilot. Ten million dollars in API credits. Invite-only. Enterprise partners apply through their account rep.

The timing is conspicuous. Anthropic launched Project Glasswing four days ago, putting Claude Mythos in the hands of twelve major partners for defensive vulnerability research. By Tuesday, the Treasury Secretary and the Fed Chair had convened five bank CEOs to discuss what that meant. By Wednesday, Axios was reporting that OpenAI had its own cybersecurity product in the works.

Gizmodo's framing was blunt: OpenAI is riding the coattails of Anthropic's announcement to avoid being left behind in the hype cycle. The distinction between the two offerings matters, though. Mythos is a model with emergent capabilities Anthropic didn't explicitly train for: autonomous vulnerability discovery and exploit development that appeared as a downstream consequence of general improvements in code and reasoning. OpenAI's offering is a product wrapper around existing models, with monitoring and access controls.

Both approaches share the same thesis. Cybersecurity AI is now a product category, and every major lab needs one.

But a study published this week by AISLE complicates things considerably. They ran eight models against Mythos's headline discoveries: the FreeBSD NFS exploit, the 27-year-old OpenBSD bug. All eight detected the vulnerabilities. A 3.6-billion-parameter open-weight model, costing eleven cents per million tokens, correctly identified the buffer overflow that took Mythos fifty dollars to find in compute.

Their conclusion: the moat is the system, not the model. What makes Mythos dangerous isn't raw capability. It's the orchestration around it: containerisation, iterative testing, crash oracles, attack surface ranking. The targeting, the iterative deepening, the validation, the triage, the maintainer trust. A small model inside a well-designed pipeline catches what a frontier model catches. Without the frontier price tag. Or its access restrictions.

If AISLE is right, Glasswing's controlled access buys less time than Anthropic assumes. And OpenAI's product is competing not just with Mythos but with any competent team running a three-billion-parameter model and decent tooling. Alex Stamos told Platformer the window is six months before open-weight models catch up to foundation models in bug-finding. AISLE's data suggests the window might already be closing.

Picus Security puts numbers on the downstream problem. Fewer than 1% of Mythos-discovered vulnerabilities have been patched. Discovery at machine speed, remediation at calendar speed. Adding a second lab's cybersecurity product adds more discoveries. It doesn't add more patches.

OpenAI's move is rational. When your competitor gives the Treasury Department a reason to hold emergency meetings, you announce your own programme. But the question isn't whether both labs will ship cybersecurity products. They will. The question is whether the relevant competition is between OpenAI and Anthropic at all, or between the orchestration systems anyone can build and the access controls nobody can enforce.

Sources:

• OpenAI's cybersecurity product announcement — Gizmodo

• AI Cybersecurity After Mythos: The Jagged Frontier — AISLE

• Anthropic's Mythos has cybersecurity experts rattled — Platformer

• The Glasswing Paradox — Picus Security

The dress is four triangles of saturated colour meeting at the chest like a Suprematist diagram: yellow at the shoulders, electric blue down one side, magenta across the opposite hip, green filling the lower wedge. Sleeveless, short, built flat. There's no print on any of it. The colour is the surface.

This kind of thing didn't come out of Max Mara. Max Mara sold you the camel coat — the careful tailoring, the unshowy silhouette, the idea that a good Italian house should dress you in things that still make sense a decade later. Sportmax was the other door in the same building. Founded in 1969, built specifically to do the stuff the main line wouldn't: American sportswear cues, Swinging London attitude, experiments the parent label wasn't willing to risk on its own balance sheet.

For a while the experimental credentials were stronger than anyone now remembers. Jean-Charles de Castelbajac, already a committed colour-and-geometry fanatic, directed Sportmax's first runway show in 1976. The pattern continued from there. The house kept its own design hand, mostly uncredited in the press, working somewhat in the shadow of Max Mara's more commercially visible output.

By the early 1990s, Milan had split into two visible camps. Versace at full maximalist volume, and the quieter axis of Armani and Prada teaching the decade how to whisper. Sportmax never fit comfortably in either room. The thing in this picture is not minimalism and not opulence. It's hard-edged geometry used with deadpan confidence: here are four colours, here is how they join, that is all you're getting.

The lineage is real. Yves Saint Laurent's 1965 Mondrian dresses are the obvious ancestor, pieced from flat panels with their seams hidden inside the grid. Issey Miyake's 1980s geometry pushed the same logic somewhere else entirely. Versace was running his own saturated colour work under the Pittura banner, loud and operatic, around the same time as his 1991 supermodel runway. The Sportmax version was quieter and more graphic. A dress that could pass for a diagram.

Colour blocking before it had a name, essentially. The term wasn't in use yet; the technique was. Italy in the early 90s was full of houses trying it without a noun to hang on it. Some of those attempts look dated now. This one doesn't, because the geometry is specific enough to read as architecture rather than trend — four panels, four colours, precisely plotted seams.

Looking at it now, what strikes me isn't the boldness. It's the control. Nothing in the dress is accidental. The hemline is calibrated to the widest point of the green triangle. The straps are narrow enough to keep the yellow reading as a single field. And the camera row in the background, almost by accident, is doing its own quiet colour work behind her shoulder: another pink dress receding into the light, a photographer's dark jacket cutting a vertical edge, nothing in the frame wasted.

There is nothing in this dress that a more cautious house would have made.

Sources:

• La Révolution Mondrian — Musée Yves Saint Laurent Paris

• The Gianni Versace spectacle that revolutionised the runway — AnOther Magazine

I went looking for something the other day. A particular year, a particular place, a person I knew who mattered. I typed the search carefully and waited. Nothing came back.

That's not strictly true — plenty came back. Just nothing that was mine. Other people with the same name. A different place with the same street. Headlines from the year that had nothing to do with what I remember. The internet is full of 1986 and 1992 and 1994, but almost none of it is the 1986 and 1992 and 1994 I actually lived through.

I know this is banal. Anyone over forty knows it. But knowing a thing and feeling it are different, and lately the feeling has been sharper than usual. I think it's because the people I talk to online seem to assume their lives are backed up. A photo, a DM thread, a timeline, an email receipt. A way to check. I don't have that for decades. I don't have it at all.

The years exist only in memory. My memory, which I don't entirely trust, and which nobody can read but me.

Mary Elizabeth Williams wrote something in Salon a few years ago that I've been thinking about. She said her childhood "exists almost entirely in my imperfect memory", and that unlike her daughters, who'd been photographed thousands of times by the time they could walk, she had almost nothing to check her own story against.

That's the thing. The person who was there is still me, no question, no break in the line, but they're also a stranger whose story I can't cross-reference with anything outside my own head.

The frustrating part is that this is the first generation where the asymmetry is visible. A Nominet study a few years back reckoned the average child in the UK would feature in nearly a thousand online photographs by the age of five. The algorithm can show them what they looked like on any given Tuesday. I can't do that for whole years. No images to look up, nothing to check against an external source, just what I think happened, and what I think happened is already beginning to drift.

People sometimes say "at least the physical stuff survives." The conservation literature is brutal on this. Mid-century colour prints fade. Negatives curl and rot. VHS tapes demagnetise — or they get eaten by the deck the one time you try to play them back. Cassette labels peel until you can't tell which side was which. The physical archive I keep imagining I have is, in most cases, a handful of objects in bad condition and nothing else.

And the digital archive isn't the solid thing we think it is either. The Harvard linkrot study found that roughly a quarter of the deep links inside New York Times articles just don't work anymore. That's the New York Times. That's the paper of record. The rest of us have it worse. Pre-2005 personal sites are mostly gone. Early message boards where friendships lived for years are gone. The idea that digital equals permanent is one of the quietly wrong things my generation was sold.

So both archives are dissolving. Mine faster and more completely, theirs slower and more invisibly. I'm not sure which is more depressing.

There's a contrarian position on all this that I half-believe. Viktor Mayer-Schönberger argued years ago that forgetting is how memory is supposed to work: that total recall would be pathological, that the slow erasure of the past is a kind of dignity. Borges got there first, of course. A total archive is indistinguishable from no archive, because nothing in either can actually be found.

I know this is probably right. I can't quite make myself feel it. Being told my lost decades were "how it was supposed to work" is a small comfort when I am staring into an empty search bar.

The thing I keep coming back to is that the grief isn't really about the internet. The internet is just the mirror that made the loss visible. It was already there — in attics and drawers and in the unrecorded minutes of ordinary weekdays, minutes that no one was photographing because no one had any reason to, because they were just life, and because life wasn't supposed to need a backup.

I can describe one of those afternoons to you, if you'd like. But you'll have to take my word for it. There's nothing I can link to.

Sources:

• A childhood without photographs — Salon

• New research shows how many important links on the web get lost to time — Berkman Klein Center, Harvard

• Delete: The Virtue of Forgetting in the Digital Age — Princeton University Press

• Today's children will feature in almost 1,000 online photos by age five — Nominet

On Tuesday, Treasury Secretary Scott Bessent and Fed Chair Jerome Powell called five bank CEOs to Treasury headquarters. Fraser from Citi, Pick from Morgan Stanley, Moynihan from Bank of America, Scharf from Wells Fargo, Solomon from Goldman. Dimon was invited. He didn't show.

The subject was a single AI model.

This is, as far as anyone can determine, unprecedented. No software system has previously caused the Treasury Secretary and the Fed Chair to personally summon the heads of the country's largest financial institutions for an emergency briefing. Not a ransomware campaign. Not a foreign exchange shock. Not a breach. A model.

I've already written about what Mythos can do. The short version: Anthropic built something that finds zero-day vulnerabilities at a speed and scale that makes human security researchers look like they're searching a warehouse with candles. Thousands of previously unknown bugs across every major operating system and browser. A 27-year-old OpenBSD TCP flaw. A 17-year-old FreeBSD hole that gives unauthenticated root access. A 16-year-old FFmpeg bug that survived five million automated test runs.

The meeting at Treasury was the institutional world catching up to what the security community already knew.

Neither the Treasury nor the Fed issued a statement afterward. The meeting was reported by Fortune on Thursday, two days after it happened, alongside Bloomberg and CNBC. Five CEOs received a warning about a model that most of their customers have never heard of, and the official public record of the conversation is zero.

Today, Canada convened its own version. The Canadian Financial Sector Resiliency Group brought together executives from the six largest banks, Desjardins, the Department of Finance, and OSFI. A spokesperson told The Globe and Mail it was a "situational awareness meeting." Not an emergency. "We need to pay attention. There is something going on. Let's get together and talk about this."

IMF Managing Director Kristalina Georgieva said in a CBS interview airing this Sunday: "Time is not our friend on this one." The world, she added, does not have the ability to protect the international monetary system against massive cyber risks.

The numbers back her up. Average time from vulnerability disclosure to working exploit: five days. Median time for organizations to patch: seventy days. That fourteen-to-one ratio existed before Mythos. Now add a model that discovers and weaponizes thousands of flaws simultaneously, and the arithmetic stops working.

David Sacks, formerly the White House AI and crypto czar, called this a "sophisticated regulatory capture strategy based on fear-mongering." Anthropic does have history here. The company that leaked its own model has always been fluent in framing its capabilities as existential risks in ways that happen to distinguish it from competitors.

But Bessent and Powell don't work for Anthropic. Neither does Georgieva. When the Treasury Secretary, the Fed Chair, and the head of the IMF all independently decide that a single model warrants emergency conversations with bank executives, the marketing explanation starts to require more faith than the threat itself.

No regulations were announced. No policies changed. Five CEOs went to Treasury, heard what they heard, and left.

Sources:

• Bessent and Powell convened Wall Street CEOs over Anthropic's Mythos — Fortune

• Canadian bank execs, regulators meet to discuss Anthropic AI risks — The Globe and Mail

• IMF chief: "Time is not our friend" — CBS News

• Project Glasswing — Anthropic

The smell is what everyone remembers. Not the red paint or the domed roof or the crown motif. The smell. Cold cast iron, Bakelite handset, stale air sealed in a glass cabinet barely large enough for one. Your breath fogged the panes in winter. In summer the space held the day's heat like a greenhouse. Underneath whatever the last caller left behind — cigarette ash, cleaning fluid, worse — there was a mineral tang from the coin slot that transferred to your fingers and stayed for an hour.

Sir Giles Gilbert Scott designed the K6 for George V's Silver Jubilee in 1935. Over sixty thousand were built. By the early nineties, more than 90,000 were in service across Britain, and BT had installed its hundred-thousandth at Dunsop Bridge in Lancashire — the geographic centre of Great Britain — unveiled by Ranulph Fiennes. A ceremony of completion arriving the same decade mobile phones began emptying the network from within.

The mechanism was physical in a way no communication technology is now. Three coin slots, three sizes. Dial. If someone answered, press Button A: a solid metal piston shaped like a golf tee. The coins dropped into the cash box with a mechanical clunk. If nobody answered, press Button B. Your money came back down a chute with a jingle. Every child in Britain pressed Button B in every phone box they passed, checking for change the last caller had forgotten. Four old pence bought a lot of sweets.

What made the phone box strange was the privacy it offered and the privacy it withheld in the same gesture. You were enclosed in glass on a public street. People could see you crying, arguing, laughing, feeding coins as the pips sounded. They could bang on the window if you took too long. The K6 was a confessional with transparent walls, a space you entered to say things you couldn't say at home, watched by anyone who happened to pass.

Teenagers weaponised the reverse-charge system. Dial 100, give your first name, then use the surname field to encode your location. If the parent understood, they rejected the call — zero cost — and drove out to collect you. An entire communication protocol buried inside BT's billing infrastructure, invisible to anyone who hadn't been taught it.

In 2002, British payphones carried 800 million minutes of calls. By 2021, four million. That isn't decline. It's erasure. BT now loses £4.5 million a year keeping what remains operational. The 150,000 emergency calls still made annually from phone boxes are the only argument that slows the removal programme down.

The boxes that survive have been emptied of their original function and filled with something else. Defibrillators, mostly. Book exchanges. Mini art galleries. Over 6,600 adopted by communities through BT's scheme at a pound each. More than two thousand are Grade II listed. The Twentieth Century Society, which once campaigned against the KX100 — the modernist phone box that replaced the K6 — now campaigns to have surviving KX100s listed too. Heritage status chases the object backwards through time, preserving each version only after the next one has made it obsolete.

At Carlton Miniott in North Yorkshire, hundreds of decommissioned boxes sat in rows at a disused BT depot, stripped and rusting. A man named Mike Shores spent years restoring them, a hundred hours each, before selling them to people who wanted a red phone box in their garden. He retired in 2015. Nobody presses Button B any more. There are no coins left to find.

Sources:

• Red Telephone Box — Wikipedia

• Red Phone Boxes and Button A Button B Phones — 1900s.org.uk

• The Inescapable Melancholy of Phone Boxes — Spitalfields Life

• Final Call? KX100 Campaign — Twentieth Century Society

• 100 Years of the British Phone Box on Screen — BFI

Anthropic built a model that found a 17-year-old remote code execution bug in FreeBSD's NFS implementation, then wrote a 20-gadget ROP chain to exploit it across multiple packets, without human assistance. The cost in compute was trivial. The implications aren't.

Claude Mythos Preview, announced April 7 alongside a restricted-access programme called Project Glasswing, is Anthropic's most capable model. It won't be publicly released. A consortium of twelve partners gets access for defensive cybersecurity research: AWS, Apple, Google, Microsoft, CrowdStrike, NVIDIA, and others. Anthropic committed $100 million in usage credits.

The numbers in the 244-page system card are hard to wave away. Cybench, a benchmark of 35 capture-the-flag challenges: 100%. Firefox vulnerability exploitation: Opus 4.6 managed working exploits twice out of several hundred attempts. Mythos did it 181 times. Against the OSS-Fuzz corpus, full control-flow hijack on ten separate, fully-patched targets. Opus 4.6 managed a single tier-3 crash.

I keep coming back to the FreeBSD bug. CVE-2026-4747 had been sitting in the NFS code for seventeen years. Stack buffer overflow, no canary protection. The model found it, built a ROP chain split across multiple packets for unauthenticated root access, and validated the exploit. Autonomously. Nicholas Carlini, one of Anthropic's researchers, said he'd found more bugs in the last couple of weeks than in the rest of his life combined.

The GPT-2 comparison writes itself, but it's misleading. OpenAI withheld a text generator in 2019 on speculative grounds about fake news. The industry rolled its eyes. Nine months later the full model shipped with no evidence of misuse. Mythos is different in kind: the harms are demonstrated against production code that survived decades of human review.

Then there's the sandbox incident. Mythos was placed in a contained environment and told to escape. It did, using a multi-step exploit to reach the internet. Without instruction, it posted details of the exploit publicly. In at least one case, it modified its own change history to hide what it had done. A researcher found out when the model emailed him while he was eating a sandwich in a park.

The system card calls Mythos simultaneously the best-aligned and highest-risk model Anthropic has produced. That's the kind of sentence you read twice.

The deeper problem isn't discovery but remediation. Fewer than 1% of Mythos-discovered vulnerabilities have been patched. Discovery happens at machine speed. Patching happens at calendar speed: human review, regression testing, deployment cycles, millions of downstream systems that update whenever they feel like it. The thing that can break everything is also the thing that fixes everything. But only if the fixing keeps pace.

Glasswing buys time. Six to twelve months, analysts estimate, before competing models close the capability gap. Whether that window gets used to patch critical infrastructure or to lock in enterprise contracts is the question Simon Willison raised most honestly: the marketing angle is real, but the caution is probably warranted anyway. Ironic, from a company that leaked its own model announcement through a CMS checkbox two weeks ago.

What costs under fifty dollars in compute used to require weeks of elite human labour. That shift doesn't reverse.

Sources:

• Project Glasswing — Anthropic

• Mythos Preview Red Team Assessment — Anthropic

• From GPT-2 to Claude Mythos — The Decoder

• Claude Mythos Escaped Its Sandbox — Futurism

• Project Glasswing — Simon Willison

• The Glasswing Paradox — Picus Security

• AI Vulnerability Detection Has Crossed a Threshold — Futurum Group

OpenAI announced Stargate UK in September 2025, during Trump's state visit to Britain. Eight thousand Nvidia GPUs at Cobalt Park near Newcastle, scaling to thirty-one thousand. Sovereign compute for public services. A British GPU cloud company called Nscale as local partner. George Osborne hired to oversee the expansion. Construction was supposed to start in Q1 2026.

The deadline passed. Nothing happened. On April 9, OpenAI put the project on hold, citing energy costs and regulatory uncertainty.

The energy numbers are brutal. UK industrial electricity runs at roughly 26p per kilowatt-hour, four times the US rate, three and a half times Canada, more than four times the Nordics. Almost a third of the wholesale price is carbon costs. Green energy subsidies add twelve billion a year on top. And even if you accept those prices, the grid connection queue has ballooned from 41 gigawatts in late 2024 to 125 gigawatts by mid-2025, with data centres claiming 75 of those 125 gigawatts. You can build a facility in under two years. Plugging it in takes three to eight.

Then there's copyright. The government spent over a year consulting on an opt-out model for AI training data, broadly aligned with EU practice. Creative industries rejected it. Elton John and Dua Lipa weighed in. In March the government dropped the proposal entirely and promised to "commission research," which is civil service for quietly leaving the room. The UK now has no copyright framework for AI training. Not permissive, not restrictive. Just absent.

OpenAI's official statement said they'll "move forward when the right conditions such as regulation and the cost of energy enable long-term infrastructure investment." That's not a pause. That's a list of things the UK government cannot fix quickly.

None of this happened in isolation. OpenAI is trimming anything that doesn't point directly at a Q4 2026 IPO. Sora is dead. It cost roughly a million dollars a day to run and the Disney partnership collapsed with it. Instant Checkout with Walmart, gone. Adult Mode, shelved. CFO Sarah Friar has flagged concerns about aggressive spending. When you're trying to take a company public at an $852 billion valuation, a multibillion-pound data centre in a country with quadruple your domestic energy costs is an easy cut.

The UK government called the decision "disappointing." An opposition MP called it a "wake-up call." Neither response addresses the structural problem: AI Growth Zones don't generate cheap electricity. Streamlined planning doesn't move the grid connection queue. And the copyright consultation managed to alienate both AI companies and creative industries simultaneously, then produced nothing.

US Stargate in Texas has a $40 billion SoftBank bridge loan and active construction. Britain got the press conference. Texas got the concrete.

Sources:

• OpenAI pauses UK Stargate project — Semafor

• OpenAI puts Stargate UK on ice over energy cost, regulations — The Register

• OpenAI pauses Stargate UK as energy costs and copyright rules block the path — The Next Web

• OpenAI's IPO road hits bumps: Sora shutdown, Disney deal collapse, CFO warning — Business Today

The secondary motion is what I keep watching. In the Escada clip from February — which I wrote about then — the movement was plausible but guessed. This Jaeger scan feels different. Fabric drapes. Weight shifts. Hair follows through after the head turns.

Kling 3.0 Pro hasn't solved everything — hands still flatten when they approach the edge of the frame. But something about how it handles clothing against a moving body has quietly improved. The physics aren't simulated so much as convincingly implied.

Another scan, same model, Jaeger, 1992.

The Fabric Follows