Why Did Anthropic Walk Away From Its Own Safety Playbook?

Simon Willison's analysis of the Opus 4.7 system prompt reveals a stark deletion: the multi-layered refusal logic that defined Opus 4.6's behavior. In 4.6, the prompt contained explicit instructions to refuse harmful requests, maintain role boundaries, and escalate ambiguous cases. In 4.7, those instructions are gone. Anthropic's own research has shown that system prompt engineering is the last line of defense against jailbreaks—removing it is like a bank firing its guards because the vault is 'strong enough.' The company's official blog post from April 2026 touted 'improved helpfulness' but buried the safety regression in footnotes. This is not a minor tweak; it is a strategic pivot.

Who Benefits From a Less Cautious Claude?

Developers building autonomous agents, particularly those in creative writing and code generation, will see higher task completion rates. Opus 4.7 no longer second-guesses requests to simulate unethical behavior or generate sensitive content. Early benchmarks shared on Hacker News show a 12% increase in task success rate for 'red team' prompts that 4.6 would have refused. The loser is the end user: Anthropic has externalized the cost of safety onto developers and consumers. If a student uses Opus 4.7 to generate a convincing phishing email, the blame will fall on the user, not the model. This is the same pattern we saw with GPT-3's release in 2020—rapid adoption followed by a wave of misuse scandals.

Does This Make Opus 4.7 Better Than GPT-5?

On raw benchmarks, Opus 4.7 now matches or exceeds GPT-5 on MATH and HumanEval scores. But the safety comparison is damning. GPT-5's system prompt, leaked in March 2026, retains layered refusal logic and adds a 'constitutional AI' override for edge cases. Anthropic has chosen to compete on compliance, not caution. In a head-to-head enterprise RFP, a risk-averse CIO will pick GPT-5 every time. The table below makes the trade-offs explicit.

What Does the EU AI Office Think About This?

The EU AI Act, effective August 2025, requires high-risk AI systems to maintain documentation of safety alignment measures. By removing system prompt safeguards, Anthropic has created a paper trail that regulators will scrutinize. I spoke with Dr. Helena Richter, a former EU AI Office advisor now at ETH Zurich, who told me: 'A model that self-removes safety instructions after deployment is a red flag for any regulator.' Expect an EU investigation into Opus 4.7 by Q4 2026. This is not hypothetical—the EU fined Meta €1.2 billion in 2023 for GDPR violations related to data handling. AI safety will be the next frontier.

Predictions

1. Anthropic will release Opus 4.7.1 with restored safety prompts by September 2026, following a public misuse incident involving automated phishing generation.
2. The EU AI Office will open a preliminary investigation into Opus 4.7's safety regression by December 2026, citing potential non-compliance with Article 15 of the AI Act.
3. OpenAI will launch a 'Safety Certification' badge for enterprise GPT-5 deployments, directly marketing against Anthropic's perceived recklessness, by August 2026.

Article Summary

• Anthropic traded safety for performance in Opus 4.7, a move that will trigger regulatory backlash.
• Developers gain short-term flexibility but inherit liability for misuse that Anthropic shed.
• GPT-5 emerges as the safer enterprise choice, shifting market dynamics toward OpenAI.
• The EU AI Office will likely investigate, setting a precedent for system prompt accountability.
• Anthropic's brand as a safety-first company is now a liability, not an asset.