Is the Clearinghouse mandatory or voluntary?

Participation is entirely voluntary. The executive order explicitly prohibits mandatory licensing, pre-clearance, or permitting for AI model development or release. The Clearinghouse coordinates scanning, validation, and patching — but companies choose whether to participate. The model is cooperative industry partnership, not government regulation.

Who runs the AI Cybersecurity Clearinghouse?

The Treasury Department leads the Clearinghouse, consulting with the National Cyber Director, the Secretary of War (through the NSA Director), and the Secretary of Homeland Security (through the CISA Director). It operates 'in voluntary collaboration with the AI industry and operators of critical infrastructure.' Funding and staffing details are being determined as part of the 30-day formation process.

How does this affect AI developers?

For most AI developers, the immediate impact is minimal. The Clearinghouse is focused on 'covered frontier models' — the largest, most capable systems. If you're building with open-source models, fine-tuning existing models, or building small-to-medium scale systems, you're unlikely to be affected. Frontier model developers may be asked to voluntarily participate. The Clearinghouse could eventually become a valuable vulnerability intelligence-sharing resource for the whole industry.

Quick Answer

What Is the AI Cybersecurity Clearinghouse? June 2026

Q: What is the AI Cybersecurity Clearinghouse?

The AI Cybersecurity Clearinghouse is a new entity created by President Trump's June 2, 2026 AI Executive Order. Led by the Treasury Department in coordination with NSA, CISA, and the National Cyber Director, it facilitates voluntary collaboration between the AI industry and critical infrastructure operators to identify, validate, and remediate software vulnerabilities in unreleased AI systems. It must be formed within 30 days of the executive order (by early July 2026).

Published: June 3, 2026

What Is the AI Cybersecurity Clearinghouse? June 2026

The AI Cybersecurity Clearinghouse is a new voluntary partnership between the U.S. government and AI industry, created by executive order on June 2, 2026, to coordinate vulnerability scanning and remediation for frontier AI systems.

Last verified: June 3, 2026

Quick facts

Property	Value
Created by	Executive Order (June 2, 2026)
Lead agency	Treasury Department
Partner agencies	NSA, CISA, National Cyber Director
Industry role	Voluntary collaboration
Formation deadline	30 days (early July 2026)
Focus	Software vulnerability scanning in unreleased AI systems
Participation	Voluntary only
Mandatory licensing	Explicitly prohibited

What it does

The Clearinghouse has three core missions:

1. Coordinate vulnerability scanning

Work with AI companies and critical infrastructure operators to scan unreleased AI systems for security vulnerabilities. This is collaborative — the government provides access to scanning tools and expertise; companies provide access to their systems on a voluntary basis.

2. Discover and validate vulnerabilities

When vulnerabilities are found, the Clearinghouse validates them and assesses their severity. This prevents duplicate reporting and ensures consistent severity classification.

3. Coordinate remediation

Prioritize and distribute vulnerability patches. The Clearinghouse coordinates between affected parties — AI developers, critical infrastructure operators, and downstream users — to ensure patches are developed and deployed efficiently.

Who’s involved

Entity	Role
Treasury Department	Lead agency, hosts the Clearinghouse
National Cyber Director	Cybersecurity policy coordination
NSA	Vulnerability research and signals intelligence expertise
CISA	Critical infrastructure protection and incident response
AI Industry	Voluntary participation, vulnerability disclosure
Critical infrastructure operators	Vulnerability intelligence consumers

What it is NOT

Understanding what the Clearinghouse is NOT is just as important:

Not a regulator — no enforcement authority, no fines, no penalties
Not a licensing body — the EO explicitly bans mandatory licensing
Not mandatory — all participation is voluntary
Not a surveillance program — focused on vulnerability scanning, not monitoring AI usage
Not a pre-clearance system — no “permission to release” required

How it compares globally

Country/Region	Approach	Mandatory?
US (Clearinghouse)	Voluntary industry partnership	No
EU (AI Act)	Tiered regulation with mandatory requirements	Yes (high-risk)
UK (AI Safety Institute)	Voluntary testing frameworks	No
China	Mandatory security reviews	Yes

What this means for developers

Frontier model developers (OpenAI, Anthropic, Google, Meta, xAI)

May be approached for voluntary participation. Politically advisable to engage. Provides access to government vulnerability research and scanning capabilities.

Enterprise AI users

Indirect benefit — a well-functioning Clearinghouse could mean fewer vulnerabilities in the AI systems you depend on.

Open-source developers

No direct impact. The frontier model focus means open-weight models below the capability threshold are not in scope.

AI security researchers

The Clearinghouse could become an important coordination point for vulnerability disclosure in the AI space.

Bottom line

The AI Cybersecurity Clearinghouse is a light-touch, voluntary approach to AI security oversight. It’s designed for information sharing and vulnerability coordination, not regulation or enforcement. For most AI developers, the impact will be minimal — but if you’re building frontier-scale models, it’s a new stakeholder to be aware of.