White House launches Gold Eagle to speed vulnerability fixes

The White House launched Gold Eagle, an AI pipeline to speed detection, prioritization and patching of software vulnerabilities in critical infrastructure.
The White House on Tuesday launched Gold Eagle, an AI-powered coordination mechanism designed to accelerate detection, prioritization and patching of software flaws in the nation’s critical infrastructure. The system pairs open-source software maintainers with critical infrastructure operators in a shared reporting and remediation pipeline.
Gold Eagle is built using existing federal authorities and resources. The initiative is intended to cut duplicate vulnerability scanning across agencies and companies and to provide prioritized, actionable remediation guidance to defenders in both government and industry.
The program brings the Cybersecurity and Infrastructure Security Agency, the Treasury Department and the Department of War together with private-sector partners to operate a common reporting and fix pipeline. Officials say Gold Eagle has started receiving and triaging vulnerability reports “from across industries and sectors” and coordinating scan verification.
The initiative implements a mandate in Executive Order 14409, “Promoting Advanced Artificial Intelligence Innovation and Security,” signed by President Trump on June 2. The order required an AI-enabled clearinghouse to find and fix software flaws; the White House describes Gold Eagle as the operational vehicle for that requirement.
White House materials say the platform will move reported flaws from discovery to remediation more quickly by pairing maintainers and operators. The platform will seek to rank and prioritize vulnerabilities so limited patching resources focus on the most damaging risks and to send uniform guidance to public and private defenders to reduce duplicated effort.
The administration has not disclosed which private companies or open-source projects are participating, which AI models Gold Eagle will use, or the criteria the program will apply to rank and prioritize vulnerabilities. The White House statement did not include details on data-sharing agreements, oversight mechanisms or sector rollout timelines.
Officials say Gold Eagle will operate within current legal authorities and use existing agency capabilities. The program’s initial phase will concentrate on establishing the reporting and remediation pipeline, validating scan results and building the prioritization framework. Further technical details and participant lists have not yet been released.
Secretary of War Pete Hegseth, in a prepared statement, called Gold Eagle “the vanguard of America’s cyber defense.” He added the program would “leverage frontier AI alongside top American innovators to safeguard our critical infrastructure and protect the homeland.”
Gold Eagle’s launch follows other federal cyber actions tied to Executive Order 14409 and to efforts to accelerate migration to post-quantum cryptography. Administration officials have acknowledged use of advanced AI systems to scan and audit government software as part of broader vulnerability discovery work.



