Microsoft has disclosed that its growing use of artificial intelligence for vulnerability discovery will translate directly into more frequent security updates for Windows users, acknowledging that AI is accelerating the pace at which flaws are found across its codebase.

In a blog post published July 9, 2026, the company stated that advances in AI have made it possible to identify more security issues, more quickly, across broader swaths of code. The practical consequence for customers, Microsoft says, is a higher volume of patches in each monthly Patch Tuesday release.

The MDASH Scanning Pipeline

At the center of Microsoft’s approach is a tool called MDASH, short for Microsoft Security’s multi-model agentic scanning harness. The system scans critical Windows binaries for potential vulnerabilities and then passes candidates through multiple AI models for validation. A second, Windows-specific pipeline is applied afterward to filter out false positives before human engineers review the findings.

Beyond initial detection, Microsoft says AI is being used to help engineers understand failures more rapidly, suggest potential fixes, and surface similar bugs elsewhere in the Windows source code. The company was explicit that human review remains mandatory: no proposed code changes or fixes are released to production without engineer oversight and validation.

SDL Updates to Address AI-Enabled Attacks

Microsoft also announced updates to its Secure Development Lifecycle (SDL) practices, designed to account for AI-enabled attack techniques used by threat actors. The revised SDL integrates AI tooling earlier in the software development process so that security issues can be identified before features ship, rather than after.

The company acknowledged the dual-use nature of AI in security. The same capabilities that allow defenders to find bugs faster also give adversaries new tools to discover and exploit zero-day vulnerabilities before patches are available.

Broader Government Adoption

Microsoft’s announcement follows a Reuters report published two days earlier indicating that the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has begun using Anthropic’s Fable AI model to scan government software for exploitable vulnerabilities. According to that report, the AI-assisted audits have already uncovered numerous vulnerabilities, though officials did not disclose counts or severity details.

Together, these developments signal a broader shift across both the private sector and government toward AI-assisted code auditing as a standard security practice, with the expectation that vulnerability disclosure rates will rise as a direct consequence.