"Public repositories materially increase the risk of unintended disclosure of source code, architectural decisions, configuration detail, and contextual information that may be exploited - particularly given rapid advancements in AI models capable of large-scale code ingestion, inference, and reasoning."
"We are temporarily restricting access to some NHS England source code to further strengthen cybersecurity while we assess the impact of rapid developments in AI models."
"Very few of the hundreds of NHS open source repositories contain anything remotely sensitive. Examples of open repos include those dedicated to documentation, architecture diagrams, and codebases for internal tools."
"The NHS's decision to pull a curtain over its code does, however, mark a significant, albeit temporary, U-turn in its longstanding policy of favoring open source."
The NHS is ordering its technology leaders to make all open source projects private by May 11 due to risks associated with advanced AI models like Anthropic's Mythos. Internal guidance emphasizes that public repositories increase the risk of source code and architectural details being exploited. This decision, approved by the NHS Engineering Board, is a temporary measure to enhance cybersecurity. While most open repositories contain non-sensitive information, the shift marks a significant change in the NHS's open source policy.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]