NHS England Restricts Access to Software Code Over AI Security Concerns
NHS England has issued new guidance requiring staff to make software repositories private by default, citing risks from advanced AI models like Mythos. The move reverses prior open-source policies despite expert views that it is unnecessary. A deadline of May 11 has been set for compliance.
newscientist.comNHS England is restricting public access to its software code in response to perceived hacking risks from artificial intelligence models. The organization has issued guidance to staff, requiring that all source code repositories be private by default.
This change applies to existing and future software, with public access allowed only for explicit and approved needs. The guidance specifies a deadline of May 11 for making repositories private. It references advancements in AI, including the Mythos model developed by Anthropic, as increasing the risk of exploitation through code ingestion and inference.
Previously, NHS software was made open-source on platforms like GitHub, as it is created with public funds, allowing other organizations to reuse and improve it.
Security experts have stated that the policy change is unnecessary. Terence Eden, who has experience in the UK Civil Service on open data access, said the move lacks logical sense. He noted that open-source software is more secure due to community checks and that much NHS software is not security-critical.
Eden added that since the code has been public for years, it remains available in backups and downloads.
The new measures contradict the NHS service standard, which requires software produced with public money to be open-source to avoid duplication and promote better services. For example, public code for the Horizon IT system might have prevented a prolonged scandal involving wrongful accusations.
A spokesperson for NHS England stated that the restriction is temporary to strengthen cyber security while assessing AI developments. The organization plans to continue publishing code where there is a clear need.
Key Facts
Story Timeline
3 events- 2026-05-01
NHS England issues guidance to make software repositories private by default due to AI risks.
1 source@NewScientist - 2026-04
Anthropic's Mythos AI is reported capable of discovering software flaws.
1 source@NewScientist - Prior to 2026
NHS software was made open-source on GitHub as per service standards.
1 source@NewScientist
Potential Impact
- 01
Other organizations may face delays in building on NHS software, increasing development costs.
- 02
Community contributions to NHS code could decrease, slowing improvements.
- 03
Reduced transparency could limit public trust in NHS digital services.
- 04
Policy may prompt similar restrictions in other UK public sectors assessing AI risks.
Transparency Panel
Related Stories
naturalnews.comBrockman Testifies on Heated 2017 Dispute with Musk Over OpenAI's For-Profit Shift in Federal Trial
OpenAI President Greg Brockman detailed a heated 2017 confrontation with Elon Musk during testimony in the federal trial Musk v. Altman. He described Musk storming around a table and grabbing a painting after rejecting shared control proposals. The lawsuit seeks $150 billion in d…
Prime Minister's Office / Wikimedia (GODL-India)Italian Prime Minister Meloni Warns of AI-Generated Deepfakes and Shares Altered Image
Italian Prime Minister Giorgia Meloni highlighted risks from AI-generated fake images, noting one depicting her in underwear and urging verification of online content. She filed a libel suit two years ago over similar deepfake images. Meanwhile, U.S. Secretary of State Marco Rubi…
Karl Withakay / Wikimedia (CC BY-SA 4.0)Richard Dawkins Claims AI Chatbot Shows Signs of Consciousness After Three-Day Conversations
Evolutionary biologist Richard Dawkins engaged in three-day discussions with an AI bot named Claudia, leading him to state that AIs are conscious and human-like. He shared unpublished work and philosophical reflections with the bot, which responded with poems and praise.