Anthropic debuts Claude Sonnet 5 as agentic AI push goes mainstream
Anthropic has launched Claude Sonnet 5, a model designed for autonomous agent systems capable of multi-step workflows and tool use. The model is available across all tiers, including Free, Pro, and Enterprise, and features improved resistance to prompt injection attacks. Cyber safeguards are enabled by default, though the model performs poorly on harmful cyber evaluations compared to Opus models. Rate limits have been increased across Chat, Cowork, and the Claude Platform to support higher token usage.

*this image is generated using AI for illustrative purposes only.
Anthropic has introduced Claude Sonnet 5, a more capable option for developers building autonomous "agent" systems that can plan multi-step workflows, use tools, and execute tasks with limited human input. Sonnet 5 is designed to operate more independently than prior Sonnet versions, including the ability to interact with tools such as web browsers and terminals to complete longer, more complex task chains, the company said in a blog post.
The model is rolling out across its product suite, where it will serve as the default for Free and Pro users. It will also be available to Max, Team and Enterprise customers, as well as through Claude Code and the Claude Platform API under the name claude-sonnet-5.
Safety and Security Features
On safety, Anthropic said internal testing indicated Sonnet 5 produces fewer undesirable behaviors than Sonnet 4.6 and shows improved resistance to prompt injection attacks and malicious instructions. The company also emphasized that Sonnet 5 was not explicitly trained for cybersecurity applications and performs significantly below its top-tier Opus models on evaluations involving potentially harmful cyber capabilities.
"We did not deliberately train Sonnet 5 on cybersecurity tasks. It can perform some routine, non-harmful cyber tasks, but on evaluations testing potentially dangerous cyber skills, such as developing software exploits, it shows substantially poorer performance than models such as Opus 4.8 and Mythos 5," the company said.
Anthropic said it has enabled cyber safeguards by default in Sonnet 5, using real-time detection and blocking systems similar to those deployed in its Opus models, while noting the guardrails are less restrictive than those applied to Fable 5.
Rate Limits and Availability
The company also raised rate limits across Chat, Cowork, Claude Code and the Claude Platform, citing higher token usage associated with increased "effort" settings in the new model. The broader availability aims to support developers integrating agentic AI capabilities into their applications.
How will competitors respond to Anthropic's focus on autonomous agent capabilities with Sonnet 5?
What impact will the increased rate limits have on the operational costs for developers building agentic applications?
Will the reduced cybersecurity capabilities of Sonnet 5 drive enterprise users toward the more powerful Opus models?






























