Onpode
Cover art for The White House is pushing Meta to submit to formal AI reviews as security concerns over AI deployment intensify

The White House is pushing Meta to submit to formal AI reviews as security concerns over AI deployment intensify

June 24, 2026 · 5 min

David Sterling & Megan Skiendel

The Trump administration privately pressured Meta to submit its Muse Spark AI model to federal security review under CASI, reported by the Times on June 23rd. OpenAI, Anthropic, Google, xAI, and Microsoft had already signed. Meta's spokesman said the company 'hopes to sign soon' — making Meta the sole frontier AI holdout under a voluntary framework built without legislation.

The Trump administration is pressing Meta Platforms to voluntarily submit its advanced AI models for federal security reviews, making Meta the only major U.S. AI developer that has not yet agreed to participate in the process.

0:004:32
Make your own on Onpode

Describe any topic. Hear it in minutes.

More Onpode episodes on Technology

About this episode

Five companies agreed to let the federal government review their AI models before deployment. Meta didn't — and that gap turned out to matter more than anyone expected. This episode walks through what's actually happening: the Trump administration's June 2nd executive order, the confidential request to Meta reported by the Times, and why a company that wasn't breaking any law ended up as the lone named holdout. It also gets into what these reviews actually surface. Anthropic's Mythos model found real vulnerabilities in classified U.S. government systems during the process — which reframes what 'voluntary' means when your competitors are handing the government information you aren't. The episode doesn't let the administration's logic off the hook either. The Electronic Frontier Foundation has alleged Pentagon pressure on Anthropic violated the First Amendment. And there's a genuine structural problem: Meta's flagship model is open-source. A security review of something already deployed everywhere may be more about optics than outcomes. What holds the episode together is a quieter, harder question — how do you build a governing architecture for frontier AI without passing a single law? The answer, apparently, is emails, public pressure, and one executive order. By the time anyone looked up to ask who approved this, it was already real.

Frequently asked

Why hasn't Meta submitted its AI models to the US government's security review process?

Meta had not submitted to CASI reviews as of the Times report on June 23rd, making it the sole major frontier AI holdout. Every other top lab — OpenAI, Anthropic, Google, xAI, and Microsoft — had already signed. Meta's spokesman Francis Brennan said the company 'hopes to sign soon,' suggesting the delay was tactical, not a principled refusal.

What is CASI and what does it do with AI models?

CASI is a federal body that reviews frontier AI models before deployment, assessing capabilities that could be weaponized, exploited for cyberattacks, or used for technology theft. The review operates on a 30-day window under an executive order President Trump signed on June 2nd. The process is voluntary, but all major AI labs except Meta had agreed to participate.

Has the US government AI security review process found any real vulnerabilities?

Yes. The Associated Press reported that during CASI's review of Anthropic's Mythos model, vulnerabilities in classified U.S. government systems were identified. This occurred during an active voluntary review, not a theoretical exercise, demonstrating that the review process surfaces real, concrete security risks from frontier AI models.

Which Meta AI model did the White House ask to review, and when was the request made?

The CASI review request targeted Muse Spark, a Meta AI model launched in April 2026. The administration's request was reported by the Times on June 23rd, citing four people familiar with a confidential communication. Meta spokesman Francis Brennan responded publicly that Meta 'hopes to sign the agreement soon.'

Does Meta's open-source AI complicate US government security reviews?

Yes, though the open-source concern applies specifically to Meta's Llama model, which is already widely deployed — not to Muse Spark, the specific model the CASI review request targets. Reviewing or restricting an open-source model that is already publicly distributed raises a structural problem: the model cannot be un-released, making pre-deployment review largely ineffective for it.

Grounded in 9 sources
US presses Meta to agree to AI reviews as security concerns rise, NYT reports - CNA · channelnewsasia.com
AI regulation is a mess, and Anthropic is caught in the crosshairs - CNN · cnn.com
Meta is now designing its own, cheaper AI smart glasses - CNN · cnn.com
Meta remains the sole major US developer refusing to share frontier models with the government’s AI safety group for review amid rising security risks, unlike OpenAI, Anthropic, Google, xAI and Micros · nytimes.com
Biggest losers in Trump’s AI order: Supporters of a tech Wild West - Politico · politico.com
US presses Meta to agree to AI reviews as security concerns rise, NYT reports - Reuters · reuters.com
Anthropic's Mythos model found vulnerabilities in classified US government systems, AP reports - Reuters · reuters.com
Trump Administration Reportedly Pushes Meta To Accept AI Audits Amid Security Concerns · yahoo.com
US presses Meta to agree to AI reviews as security concerns rise, NYT reports · yahoo.com
Read transcript

Megan Skiendel: You know what I keep thinking about? Imagine every major bank agreed to let a federal examiner look at their books before opening day. Every single one. Except one. That one bank isn't breaking a law. But everybody in the room knows their name.

David Sterling: That's Meta right now.

Megan Skiendel: That's exactly Meta right now. OpenAI, Anthropic, Google, xAI, Microsoft — all agreed to submit their models to CASI for federal review. Meta hasn't. And the Trump administration, I mean — they sent emails. Reported by the Times on June 23rd, four people familiar with a confidential request. They didn't exactly whisper.

David Sterling: But it's voluntary. Trump signed the executive order June 2nd — voluntary framework, 30 days to review. So why does being named feel like such a big deal if nobody's forced anything?

Megan Skiendel: Because the word 'voluntary' is doing a lot of work here. Francis Brennan — Meta's spokesman — put out a statement saying Meta 'hopes to sign the agreement soon.' That's not a company planning to refuse. That's a company that got pressure they weren't ready for.

David Sterling: Right. Named publicly as the lone holdout. No law broken. Maximum discomfort.

David Sterling: Well, let's talk about what CASI actually does with a model when they get it. They're looking at capabilities — what can this thing do that could be weaponized, exploited, used to attack infrastructure. Cyberattack potential, adversarial misuse, technology theft. And Muse Spark — Meta launched that in April 2026 — that's the specific model the review request is about.

Megan Skiendel: But okay, what does that look like in practice? Like, has any of this actually surfaced anything real, or is it still theoretical?

David Sterling: David Sterling: Yeah — Anthropic's Mythos model is serious stuff. The Associated Press reported it found vulnerabilities in classified U.S. government systems. That's not a whitepaper scenario. That actually happened.

Megan Skiendel: Wait. During a voluntary review?

David Sterling: During the review process. Which means — the government isn't discovering things companies missed. They're watching companies demonstrate what they already know. CASI has a 30-day window, the review is already operational, and every model that's gone through it has handed the administration a data point Meta doesn't have a counter to.

Megan Skiendel: So Anthropic walks in, Mythos finds a classified-system vulnerability, and suddenly 'voluntary' isn't the frame anymore. The frame is — what does the government now know about your competitors that they don't know about you.

Megan Skiendel: And that's — honestly, that's the Monday morning scenario nobody's writing about. The email from the administration landed Friday. By Monday every other CEO has signed. Tuesday, Meta's board is asking why they haven't. And by the following Friday, Francis Brennan is drafting 'hopes to sign soon.' That's not a principled stand. That's a company that miscalculated the room.

David Sterling: But is this actually about national security? Because the Electronic Frontier Foundation filed an amicus brief — they allege the Pentagon's pressure on Anthropic violated the First Amendment. Retaliation against an uncooperative company, not legitimate security concerns.

Megan Skiendel: Which — wait, who benefits from that framing?

David Sterling: Well, the Trump administration wants minimal regulation — they're running a global AI race argument — and simultaneously wants pre-deployment reviews. Those two things pull in genuinely opposite directions unless the reviews are never actually blocking anyone. Unless the framework is really just — leverage.

Megan Skiendel: Right. And then there's the Llama problem. Meta's model is open-source. I mean — you review it, you restrict it, but it's already deployed everywhere. You can't un-open-source a model. That's not a security review, that's just theater.

David Sterling: Structurally incoherent. That's the actual word for it. But Brennan's 'hopes to sign soon' tells you Meta already knows it. They were never planning a real refusal.

David Sterling: The moment Meta signs — and Brennan's statement makes that close to certain — the Trump administration will have a complete, working pre-deployment review architecture for frontier AI. No vote. No legislation. No public oversight of what CASI actually does with what it finds. Built entirely through emails, public pressure, and one executive order dated June 2nd.

Megan Skiendel: And the voluntary framing — I mean, that was never incidental. That was the mechanism. Every company got to feel like they chose this.

David Sterling: Well. OpenAI, Anthropic, Google, xAI, Microsoft all signed. Infrastructure's operational. Meta's the last gap. Once it closes, the architecture is complete and nobody passed a law.

Megan Skiendel: Yeah. And by the time anyone looked up to ask who approved this, it was already real.