The U.S. government is rolling out a new coordination framework called GoldEagle to speed up detection of critical infrastructure vulnerabilities, prioritisation and patching.
The GoldEagle initiative uses existing federal authorities and resources to connect open-source software managers and critical infrastructure operators through a single reporting and response pipeline.
GoldEagle includes participation by CISA, the Treasury Department and the Department of War, together with private-sector partners. It focuses on reducing duplicated vulnerability scans between government agencies and companies, and delivering prioritised, actionable response guidance to both government and industry defence teams.
The programme is based on Executive Order 14409, “Advancing AI Innovation and Security,” signed by U.S. President Donald Trump on June 2. The order called for establishing an AI-based clearinghouse to find and fix software vulnerabilities, and GoldEagle was presented as the operational means to carry out those directives, SecurityWeek reported.
The White House said GoldEagle has already begun receiving vulnerability reports, setting priorities and coordinating scan validation "across multiple industries and sectors". It did not specify which companies are participating, which AI models are being used, or how vulnerability priorities are determined. Defense Secretary Pete Hegseth (피트 헤그세스) said, "Under President Trump's leadership, we are introducing a wartime posture in cyberspace and patching vulnerabilities relentlessly," adding, "GoldEagle is the front line of U.S. cyber defence." He added, "We are using frontier AI with America's top innovators to defend critical infrastructure and protect the homeland."