In partnership with
Hi {{first_name|everyone}},
In this issue:
🤝 In Partnership: Real ways to make money with AI
🤿Deep Dive: Claude Opus 4.6 discovers 22 Firefox vulnerabilities in 2 weeks
🎁Referral Rewards: Earn perks by inviting friends
🤿Deep Dive: OpenAI launches Codex Security in research preview as an agentic application security tool
🤝Supported by: Marketing ideas from people doing the work
🤿Deep Dive: Anthropic introduces Claude Marketplace
⚒Tool Snapshots: Tools for AI, no-code, and productivity
🖼AI Art: Examples of great and trending AI art
🤝IN PARTNERSHIP WITH HUBSPOT
How can AI power your income?
Ready to transform artificial intelligence from a buzzword into your personal revenue generator
HubSpot’s groundbreaking guide "200+ AI-Powered Income Ideas" is your gateway to financial innovation in the digital age.
Inside you'll discover:
A curated collection of 200+ profitable opportunities spanning content creation, e-commerce, gaming, and emerging digital markets—each vetted for real-world potential
Step-by-step implementation guides designed for beginners, making AI accessible regardless of your technical background
Cutting-edge strategies aligned with current market trends, ensuring your ventures stay ahead of the curve
Download your guide today and unlock a future where artificial intelligence powers your success. Your next income stream is waiting.
🤿 DEEP DIVE
Anthropic and Mozilla Partner to Show AI Can Find Critical Security Flaws Faster Than Any Human Team
Intelligence: Anthropic and Mozilla completed a two-week security collaboration in which Claude Opus 4.6 identified 22 vulnerabilities in Firefox, 14 of which Mozilla rated as high-severity, representing nearly a fifth of all high-severity Firefox vulnerabilities remediated in 2025 demonstrating that frontier AI can now find critical flaws in one of the world's most hardened and widely deployed open-source codebases at a speed no human team could match.
Image credit: Anthropic (with edits)
Claude scanned nearly 6,000 C++ files, submitted 112 unique reports, and identified its first Use After Free vulnerability in Firefox's JavaScript engine within just twenty minutes, with fixes shipped to hundreds of millions of users in Firefox 148.0. The collaboration also revealed a meaningful capability gap: while Claude excels at finding vulnerabilities, it was only able to turn bugs into working exploits in two out of several hundred attempts, giving defenders a significant but time-limited advantage.
Claude's approach relied on task verifiers, trusted tools that give the agent real-time feedback as it explores a codebase, letting it confirm whether a proposed fix removes the vulnerability without breaking existing functionality, a method Anthropic identifies as the single most effective lever for improving both vulnerability discovery and patch quality.
To test exploitation capabilities, Anthropic spent approximately $4,000 in API credits running hundreds of attempts to turn discovered bugs into working exploits, succeeding in only two cases and only in a controlled environment with browser sandbox protections deliberately disabled underscoring that Firefox's defense-in-depth would have contained these particular attacks.
Mozilla's triage process shaped how the research was submitted, with the Firefox team identifying three components critical to trusting AI-generated reports; minimal test cases, detailed proofs-of-concept, and candidate patches, a framework Anthropic now recommends as standard practice for any researcher using LLM-powered vulnerability tools.
Beyond Firefox, Claude Opus 4.6 has been used to find vulnerabilities in the Linux kernel and other critical open-source projects, and Anthropic is launching Claude Code Security in limited research preview to bring vulnerability discovery and patching directly to customers and open-source maintainers before the exploitation gap narrows further.
🎁REFERRAL REWARDS
If TIW has been useful, invite one friend or coworker who’d actually use AI/automation at work.
1 referral → get the TIW No-Code Workflows PDF (25 plug-and-play workflows)
10 referrals → get a full course free (your choice)
Your referral link: {{rp_refer_url}}
Tip: send it to a friend who’s AI-curious, a coworker who wants to move faster, or anyone trying to automate repetitive tasks.
🤿 DEEP DIVE
Codex Security Launches to Find the Bugs Other AI Tools Miss
Intelligence: OpenAI launched Codex Security, formerly known as Aardvark in research preview for ChatGPT Pro, Enterprise, Business, and Edu customers, positioning it as an agentic application security tool that builds system-specific threat models to find complex vulnerabilities other tools miss and proposes context-aware patches that minimize regressions.
Image credit: OpenAI (with edits)
Codex Security builds a project-specific threat model after analyzing a repository's security-relevant structure, capturing what the system does, what it trusts, and where it is most exposed and lets teams edit that model over time so the agent stays aligned with evolving architecture and risk priorities.
Where possible, the agent pressure-tests findings in sandboxed validation environments to distinguish real issues from speculative ones, and when configured with a project-specific runtime environment, can produce working proof-of-concepts that give security teams stronger evidence and a faster path to remediation.
Codex Security reported critical vulnerabilities to a range of widely used open-source projects including OpenSSH, GnuTLS, PHP, and Chromium, with 14 CVEs assigned shaped directly by maintainer feedback that the bigger problem in open-source security isn't a lack of reports but an excess of low-quality ones.
The system learns from user feedback over time, using adjustments to finding criticality to refine its threat model and improve precision on subsequent scans, while OpenAI is expanding its Codex for OSS program to give open-source maintainers free access to Pro and Plus accounts, code review, and Codex Security as part of their normal workflow.
Over its beta period, the tool cut noise by 84% on repeat scans of the same repositories, reduced over-reported severity findings by more than 90%, and lowered false positive rates by over 50%, addressing the core complaint from security teams and open-source maintainers that AI security tooling generates more triage burden than value. In the last 30 days.
Codex Security scanned more than 1.2 million commits, surfacing 792 critical findings while keeping critical issue rates under 0.1% of scanned commits.
🤝 SUPPORTED BY THE MARKETING MILLENNIALS
The best marketing ideas come from marketers who live it. That’s what The Marketing Millennials delivers: real insights, fresh takes, and no fluff. Written by Daniel Murray, a marketer who knows what works, this newsletter cuts through the noise so you can stop guessing and start winning. Subscribe and level up your marketing game.
🤿 DEEP DIVE
Anthropic Launches Claude Marketplace to Consolidate Enterprise AI Procurement
Intelligence: Anthropic launched Claude Marketplace in limited preview, allowing enterprises with an existing Anthropic spend commitment to apply a portion of it toward Claude-powered tools built by external partners including GitLab, Harvey, Lovable, Replit, Rogo, and Snowflake with Anthropic handling all partner invoicing to eliminate the need for separate procurement processes.
Image credit: Anthropic (with edits)
By letting enterprises apply existing spend commitments toward partner tools without managing separate invoicing, Anthropic is reducing one of the most friction-heavy steps in enterprise AI procurement, the multi-vendor approval process, while keeping Claude at the center of how those tools are accessed and orchestrated.
Unlike OpenAI's ChatGPT App Directory, which launched in December 2025 with a retail and consumer focus, Claude Marketplace is targeting enterprise-specific workflows from the start, though adoption questions remain given that Claude already supports direct integrations, MCP connections, and custom agent builds that overlap significantly with what Marketplace partners provide.
Observers noted that Claude Marketplace could allow enterprises to use Claude as an orchestrator, a command center that routes to the right partner tool with the right context automatically while also giving procurement teams a way to pre-approve AI applications, bypassing the cautious approval cycles that often slow AI adoption inside large organizations.
⚒ TOOL SNAPSHOTS
Futuristic tools within AI, no-code, and productivity
💳 Claude Marketplace - Trade Anthropic commitments for customer solutions.
💰 Vibe Marketplace by Greta - Code-less creation for endless earnings.
🎨 GetMimic - AI-powered tool for creating realistic and varied mockups.
🖥️ Pulldog - Streamline native macOS reviews for Github & Gitlab PRs.
🎵 Song Sweeper - Streamline your Apple Music library effortlessly.
🖼 AI ART
Examples of great and trending AI art
Images by Immobilesteelrims
https://www.reddit.com/r/aiArt/comments/1rosi4j/how_dreams_feel/
ℹ️ ABOUT US
The Intelligent Worker helps you to be more productive at work with AI, automation, no-code, and other technologies.
We like real, practical, and tangible use-cases and hate hand-wavy, theoretical, and abstract concepts that don’t drive real-world outcomes.
Our mission is to empower individuals, boost their productivity, and future-proof their careers.
We read all your comments - please provide your feedback!
Did you like today's email?
What more do you want to see in this newsletter?
