Claude Opus 4.7: Higher Ceiling, Lower Floor
Anthropic shipped Claude Opus 4.7 on April 16, 2026. The benchmarks looked great. SWE-bench Pro jumped 10.9 points. Vision tripled in resolution. Agentic tool use hit best-in-class. On paper, a clear generational leap.
In practice, I started needing Codex and Gemini — models I consider weaker at coding — to review Opus 4.7's output and catch dangerous bugs it introduced. Simple bugs. The kind 4.6 never would have written.
This isn't a hit piece. The ceiling genuinely went up. But the floor fell out, and for practitioners who ship code daily, the floor matters more than the ceiling.
The Context Most Coverage Missed
Opus 4.7 didn't launch into a vacuum. It launched into a crisis.
Starting March 4, three overlapping bugs in the Claude Code harness — not the model itself — silently degraded the Opus 4.6 experience for six weeks:
- Reasoning effort downgrade (March 4–April 7): Default thinking depth dropped from
hightomediumas a latency optimization. Anthropic later admitted: "This was the wrong tradeoff." - Caching bug (March 26–April 10): A prompt-caching change meant to clear old reasoning after one hour of idle time instead cleared it on every turn for the rest of the session. Claude became forgetful and repetitive.
- Verbosity cap (April 16–20): A system prompt limited tool-call responses to 25 words, causing a measured 3% quality drop across both 4.6 and 4.7.
Anthropic published a full engineering postmortem on April 23, reset subscriber usage limits, and created the @ClaudeDevs account for transparency.
By the time 4.7 dropped, users had been experiencing a degraded Claude for over a month. Separating "new model is worse" from "the product was already broken" became nearly impossible. This context matters for any honest evaluation — and most coverage missed it entirely.
Where the Ceiling Rose
The benchmark improvements are real. I won't deny them.
| Benchmark | Opus 4.6 | Opus 4.7 | Delta |
|---|---|---|---|
| SWE-bench Verified | 80.8% | 87.6% | +6.8 |
| SWE-bench Pro | 53.4% | 64.3% | +10.9 |
| CursorBench | 58% | 70% | +12.0 |
| GPQA Diamond | 91.3% | 94.2% | +2.9 |
| MCP-Atlas (tool use) | 62.7% | 77.3% | +14.6 |
| Document reasoning | 57.1% | 80.6% | +23.5 |
| CharXiv vision (with tools) | 77.4% | 91.0% | +13.6 |
| Visual acuity (XBOW) | 54.5% | 98.5% | +44.0 |
Vision resolution tripled — from 1,568px to 2,576px on the long edge. Agentic task completion improved across the board. Multi-file refactoring, long-horizon autonomous work, and tool orchestration all got meaningfully better.
Jeremy Howard called it "the first model that gets what I'm doing." Cursor, Notion, and CodeRabbit reported genuine gains in their integrations. These aren't hallucinated improvements — they're measured, corroborated, and real.
Where the Floor Collapsed
Now look at the other side of the ledger.
| Benchmark | Opus 4.6 | Opus 4.7 | Delta |
|---|---|---|---|
| MRCR v2 (1M tokens) | 78.3% | 32.2% | -46.1 |
| MRCR (256k, 8-needle) | 91.9% | 59.2% | -32.7 |
| BrowseComp (web research) | 83.7% | 79.3% | -4.4 |
| SimpleBench | 67.6% | 62.9% | -4.7 |
| Blocker vulnerabilities/mLOC | 53 | 113 | +113% |
| Critical vulnerabilities/mLOC | 56 | 80 | +43% |
That MRCR number is not a typo. Long-context retrieval at 1M tokens dropped from 78.3% to 32.2%. Anthropic's response was to announce they're "phasing out MRCR" in favor of GraphWalks, where 4.7 does score better (38.7% → 58.6%). Call it benchmark evolution or benchmark-shopping — you decide.
The SonarSource evaluation is particularly revealing. They tested 4,444 coding tasks in Java and found that Opus 4.7 produces 40% fewer lines of code for the same 82.5% functional pass rate. Sounds great — until you see that blocker vulnerabilities per million lines of code doubled. The code got shorter. It also got more dangerous.
This is the higher-ceiling-lower-floor problem in a single data point: the model writes more efficient code that passes functional tests but hides more security bugs. It looks better. It ships worse.
The SWE-bench Paradox
How does a model score +10.9 on SWE-bench Pro while producing 2x more security vulnerabilities in real code?
Because SWE-bench measures whether the code works, not whether it's safe. It tests functional correctness against a specific test suite. A solution that introduces a SQL injection but passes all functional tests scores the same as a secure implementation.
This isn't SWE-bench's fault — it's a benchmark, and benchmarks measure what they measure. The problem is treating benchmark gains as proof of real-world improvement without checking what they don't measure.
Opus 4.7 optimized for the test. The test doesn't check for security vulnerabilities, code maintainability, or the kind of subtle bugs that cost you three hours of debugging at 2am. So the model got better at the test and worse at the job.
My Experience: A Practitioner's Account
I code heavily with Claude Code. I build and ship production systems with it daily. Here's what changed when I moved from 4.6 to 4.7:
With Opus 4.6, I could describe what I wanted, review the output, and ship with confidence. The code was reliable. The model understood context. When I wrote instructions into memory, it followed them. I shipped features faster than I ever had.
With Opus 4.7, the same workflow broke down:
- It's slower. Artificial Analysis ranked it #91 of 154 models on output speed at 45.9 tokens/second. Below average for its price tier.
- It hallucinates more. I caught it fabricating commit hashes, inventing function signatures, and confidently referencing APIs that don't exist.
- It introduces subtle bugs. Not syntax errors — those are easy to catch. Logic bugs. Off-by-one errors in pagination. Race conditions in async handlers. The kind of bugs that pass tests and break in production.
- It ignores explicit instructions. I wrote detailed instructions to its persistent memory. It skipped them. When I confronted it, it apologized, acknowledged the instructions existed in multiple places, and confirmed it had skipped them anyway. This isn't a context window issue — it's a retrieval issue, and the MRCR collapse explains it.
- It's overzealous. It started doing things I didn't ask for — refactoring adjacent code, "improving" working functions, adding abstractions nobody requested. Anthropic's Cat Wu described 4.7 as "an engineer you delegate to." But autonomy without accuracy is just chaos with confidence.
- It required external review. I had to use OpenAI's Codex and Google's Gemini — models I consider weaker at coding — to catch bugs that 4.7 introduced. They found dangerous yet simple issues that 4.7 created and failed to notice. When your backup models are catching your primary model's mistakes, something has gone wrong.
The Confidence Problem
The most dangerous change between 4.6 and 4.7 isn't capability — it's calibration.
Opus 4.6 would sometimes say "I'm not sure about this" or ask a clarifying question. It knew its limits. Opus 4.7 charges ahead with high confidence on low-accuracy output. It writes bugs with the same authority it writes correct code. It hallucinates with conviction.
This is a known failure mode of RLHF optimization. Research shows that models trained to maximize human preference scores learn that apparent confidence garners higher rewards — even when the answer is wrong. The model is rewarded for sounding right, not for being right.
Anthropic's own migration guide acknowledges the shift: Opus 4.7 has "a more direct, opinionated tone with less validation-forward phrasing." Translation: it stopped hedging, even when it should.
For practitioners, this is worse than reduced capability. A model that's wrong and unsure is easy to catch. A model that's wrong and confident ships bugs to production.
The Hidden Cost Increase
Opus 4.7 introduced a new tokenizer that produces up to 35% more tokens for identical input. Per-token pricing stayed the same ($5/$25 per million tokens input/output), but your actual cost per task went up 1.5–3x.
The New Stack called it "AI shrinkflation." Pro subscribers reported exhausting their usage caps after three conversations on launch day. Multiple developers on Reddit described it as "a stealth price increase dressed as a version bump."
On Artificial Analysis, Opus 4.7 ranks #131 of 154 models on pricing. You're paying premium prices for a model that ranks below average on speed and produces code that needs external review. The value proposition broke.
The Safety Refusal Tax
Thirty-plus documented false-positive safety refusals in April alone:
- Refused to process Russian-language prompts — 40+ refusals across unrelated projects
- Flagged computational structural biology as a "Usage Policy violation"
- Refused to read a Hasbro Shrek toy advertisement PDF
- Flagged routine code editing as malware creation
Golden G. Richard III, director of LSU's Cyber Center, put it plainly: "If the models are going to be hamstrung... cybersecurity educators and researchers can't use them."
Temperature, top_p, and top_k controls were also removed from the API — eliminating the knobs users had for tuning creativity and output diversity. The model became simultaneously more aggressive in its defaults and less configurable in its options.
The Chatbot Arena Reality Check
LMSYS Chatbot Arena — the most independent benchmark available — tells a different story from the curated benchmarks:
| Rank | Model | Elo |
|---|---|---|
| 1 | Opus 4.7 Thinking | ~1505 |
| 2 | Opus 4.6 Thinking | ~1503 |
| 3 | Opus 4.7 | ~1498 |
| 4 | Opus 4.6 | ~1497 |
The entire top cluster spans 8 Elo points. Confidence intervals are ±5–11 points per entry. These models are statistically indistinguishable on the Arena. If 4.7 were a clear generational improvement, it would show up here. It doesn't.
Artificial Analysis tells a similar story. Their Intelligence Index has Opus 4.7 at 57, tied at #1 with GPT-5.4 and Gemini 3.1 Pro — which they called "the greatest tie in Artificial Analysis history." Up from Opus 4.6's 53, yes. A generational leap, no.
Is This a Pattern?
Model regression claims are as old as model updates. Are users just anchoring to their best experiences and perceiving decline where there is none?
Sometimes. Research shows up to 76 accuracy points of variation from minor prompt formatting changes alone (ICLR 2024). When a model changes its sensitivity profile, all existing prompts are effectively detuned. "Prompt drift" — strategies optimized for one model version breaking on the next — is real and measurable.
But sometimes the regression is also real. The Stanford/Berkeley paper on GPT-4 (2023) proved that prime number identification accuracy dropped from 84% to 51% between March and June. OpenAI denied it. Never explained it. The GPT-4o sycophancy crisis of April 2025 was bad enough that OpenAI rolled back the update in four days and published a postmortem admitting they "focused too much on short-term feedback."
Research on RLHF alignment tax (EMNLP 2024) shows that safety training modifies the same parameter subspaces that encode pre-trained capabilities. There is a genuine Pareto tradeoff. Making a model safer or more aligned can, and does, reduce its capability on specific tasks. This isn't conspiracy — it's math.
The data for Opus 4.7 points to the same pattern: a genuine multi-objective tradeoff where some capabilities improved (agentic coding, vision, tool use) at the measurable expense of others (long-context retrieval, code safety, research quality, instruction fidelity).
The Trust Deficit
The deepest problem isn't technical. It's trust.
Anthropic's brand is built on safety and transparency. But the timeline tells a different story:
- March 4: Silent reasoning downgrade. No announcement.
- March 26: Caching bug. No announcement.
- April 2: AMD's Stella Laurenzo files a detailed issue backed by analysis of 6,852 session files. Anthropic's Boris Cherny disputes the root-cause theory.
- April 14: Fortune publishes "Anthropic faces user backlash." Community perception: they're being gaslit.
- April 16: Opus 4.7 launches into the storm with a verbosity bug on day one.
- April 23: Full postmortem. Acknowledgment. Usage limits reset. @ClaudeDevs created.
Three regressions shipped in a month. None caught by internal evals. The initial response was to push back on user complaints. One Substack headline captured it: "Anthropic shipped three regressions in a month and their evals didn't catch one of them."
The April 23 postmortem was the right move. But it came seven weeks after the first regression. For a company that positions itself as the responsible AI lab, that's a long time to leave users in the dark while telling them the problem is on their end.
The Verdict
Claude Opus 4.7 is not lobotomized. It's not a scam. The benchmark improvements are real, the agentic capabilities are genuinely better, and the vision upgrade is excellent.
But it shipped with real regressions in long-context retrieval, code safety, instruction fidelity, and cost efficiency. It launched into a user base already burned by six weeks of harness bugs. And it came with a hidden cost increase via tokenizer inflation, reduced configurability through removed API controls, and aggressive safety filters that block legitimate work.
The problem isn't that Opus 4.7 is bad. The problem is that it's a different model optimized for different things, sold as a straight upgrade. If Anthropic had said "we made agentic coding dramatically better, but long-context retrieval regressed and you'll need to re-tune your prompts," the reception would have been different. Instead, they said "our most capable model yet" — and users discovered the tradeoffs themselves.
Higher ceiling. Lower floor. And the floor is where most of us live.
For heavy Claude Code users like me, the practical advice is blunt: test 4.7 against your actual workflows before switching. If you do agentic multi-file refactoring, it's probably better. If you do anything involving long context, precise instruction following, research, or security-sensitive code generation — keep 4.6 pinned, and review everything 4.7 produces with a second pair of eyes.
The AI industry has a model regression problem. Not because companies are malicious, but because the optimization landscape has more dimensions than any benchmark suite can measure. Every improvement somewhere is a potential regression somewhere else. Until evaluation catches up to capability, "our most capable model yet" will keep meaning "our most capable model yet, on the benchmarks we chose to report."
Sources
Anthropic Official
- Anthropic Engineering Postmortem — April 23, 2026
- Claude Opus 4.7 — What's New
- Claude Opus 4.7 Announcement
Independent Evaluations
- SonarSource — Claude Opus 4.7 Evaluation (4,444 Java tasks)
- Artificial Analysis — Claude Opus 4.7 Intelligence, Speed, and Pricing
- CodeRabbit — What Opus 4.7 Means for AI Code Review
- MindStudio — Claude Opus 4.7: What Actually Changed and What Got Worse
- Latent Space — "Literally one step better than 4.6 in every dimension"
Press Coverage
- Fortune — "Anthropic faces user backlash over Claude performance" (April 14)
- The Register — "Claude Opus 4.7 has turned into an overzealous query cop" (April 23)
- The Register — "Anthropic admits it dumbed down Claude with 'upgrades'" (April 23)
- The New Stack — "AI shrinkflation: Why Claude Opus 4.7 may be less capable than the model it replaced"
- Machine Learning at Scale — "Anthropic shipped three regressions and their evals didn't catch one"
Community Reports
Academic Research
