10JUN

Sanchez shuts down Pentagon email from Cyprus

3 min read

10:31UTC

At the EU informal leaders' summit in Cyprus, Pedro Sanchez dismissed the Pentagon leak as non-official noise. Article 42.7 of the EU Treaty was already on the agenda.

← Back to Sovereignty law adopted; $40bn US chip buy Jump to analysis ↓

TechnologyDeveloping

Key takeaway

Spain classes the Pentagon leak as unofficial; Article 42.7 is the escalation path if Washington presses.

Spanish Prime Minister Pedro Sanchez responded to the Pentagon email leak on Friday 24 April from the EU informal leaders' summit in Cyprus: "We do not work on emails, we work on official documents and positions taken in this case by the United States Government" ¹. Spain maintains "absolute collaboration with the allies, but always within the framework of international legality." The reference to legality is the diplomatic vocabulary for treating the Pentagon memo as unofficial noise.

The summit convened 26 heads of government in the same building when the leak surfaced. Cypriot President Nikos Christodoulides had already tabled Article 42.7 of the EU treaty, the bloc's mutual-defence clause, on an agenda alongside the Northwood Hormuz track , Ukraine and energy security. Article 42.7 has been invoked only once, by France after the 2015 Paris attacks. Putting it back on the summit table converts the leak from a Spanish bilateral issue into a potential collective-defence discussion.

Calling the memo "emails" rather than a Pentagon position denies its standing without triggering an escalation, and Sanchez's reference to "the framework of international legality" pre-positions the legal vocabulary Spain would reach for if the Pentagon memo were converted to policy. Emmanuel Macron and Keir Starmer used the same legality framing when declining the Iran-campaign coalition, the refusal that the Pentagon memo is now written to punish.

The decision point is whether Cyprus produces an Article 42.7 working group on allied-flagged shipping outside the US two-tier ceasefire bubble, or whether the summit closes with the Sanchez line as the collective position. The former hardens the memo leak into a structural alliance dispute; the latter lets Washington test a second leaked memo against weakened European cohesion. NATO Secretary General Mark Rutte's 9 April "paper tiger" gloss of Trump's view sits between the two possibilities.

Deep Analysis

In plain English

While 26 European leaders were meeting in Cyprus, Reuters broke the Pentagon memo story naming Spain as the primary target. Pedro Sanchez responded from the same Cyprus summit building, telling reporters Spain only acts on official US government documents, not leaked internal emails. At the same meeting, Cyprus put a little-used European Union treaty clause on the agenda: Article 42.7, which says if one EU country is attacked, others must help. It has only ever been used once before, by France after the 2015 Paris attacks. Cyprus raising it now suggests some EU countries are asking whether Iran's attacks on European-flagged ships in the Gulf count as an attack that the whole EU should respond to.

What could happen next?

Risk
If Cyprus succeeds in getting an Article 42.7 working group established for allied-flagged shipping, the EU acquires a collective-defence argument for shipping protection that bypasses the NATO ABO-rights dispute the Pentagon memo triggered.

Source Landscape

This story draws on neutral-leaning sources

Consensus view: ECFR (European Council on Foreign Relations) analyst Jeremy Shapiro assesses Sanchez's 'we do not work on emails' formulation as the sharpest available European diplomatic counter that does not close the Alliance door: it disputes the instrument's authenticity without disputing the underlying tension, leaving Spain's position as principled proceduralism rather than outright defiance.

The Article 42.7 mutual-defence clause on the Cyprus agenda is the structural signal that the EU is considering whether allied-flagged shipping losses constitute an attack on a member state under its own treaty.

Counter-view: Heritage Foundation's James Carafano argues the Cyprus summit's positioning of Article 42.7 reflects European proceduralism rather than genuine willingness to invoke the clause: the last and only invocation was France after the 2015 Paris attacks, and European capitals lack the political will and military capacity to turn a Hormuz shipping incident into a mutual-defence declaration. The Northwood plan without a clear deployment trigger is the real European output.

Key tension: Whether Spain's procedural counter and the Article 42.7 agenda item harden into a formal EU working group on allied-flagged shipping outside the US ceasefire bubble, or whether the Cyprus summit disperses without producing an institutional follow-on.

First Reported In

Update #78 · Allies flagged, adversaries listed, nothing signed

Democrata· 24 Apr 2026

Read original →

Causes and effects

Caused by

Northwood drafts Hormuz rules without Gulf signatures

Cyprus summit Article 42.7 discussion directly responds to the Northwood coalition planning excluding the US and the two-tier ceasefire architecture

Occurred 20 Apr 2026

Read story →

This Event

Sanchez shuts down Pentagon email from Cyprus

Europe's diplomatic response sets the test for whether the Pentagon memo becomes policy or deniable drafting.

Different Perspectives

European cloud and open-source industry

European cloud providers gain a binding procurement mandate from CADA, confirmed by Gartner's $12.6bn sovereign-cloud figure for 2026. The $40bn Pax Silica commitment signals Brussels will not extend sovereignty discipline to the silicon layer, and the missing €350m Sovereign Tech Fund leaves open-source maintenance infrastructure unfunded beneath those same clouds.

United Kingdom

Science Secretary Kendall's £1.1bn Hardware Plan on 8 June chose demand-side instruments, advancing £150m to British chip startups via the British Business Bank, where Brussels chose supply-side alliance membership. Britain joined Pax Silica before the EU and has no collective EU procurement leverage; the Hardware Plan is the bilateral answer to the same silicon gap.

United States

Pax Silica, a State Department initiative launched in December 2025, secured EU membership the same afternoon Brussels adopted its cloud sovereignty law. Ambassador Puzder had named CADA a red line against the EU-US trade framework; the narrowed CADA scope and the $40bn chip commitment together represent the settlement Washington sought.

France

France was the only EU state to oppose Pax Silica accession at COREPER on 3 June, asking the Commission to clarify the Council's steering role inside the alliance. Paris backed CADA and hosts Mistral AI; a $40bn US-chip commitment contractually narrows the commercial space for the sovereign AI model that France is trying to scale.

European Commission

Von der Leyen framed CADA on 3 June as keeping 'most of our market open to like-minded partners', and the Commission's EVP Virkkunen simultaneously required majority-European ownership for the €4.12bn AI Gigafactories call. Brussels is managing rather than resolving the silicon dependency by asserting regulatory control at the cloud layer while formalising the chip relationship through Pax Silica.

European Central Bank

The ECB's digital euro pilot drew more than 50 PSP applications and is naming 10 to 30 participants in July, advancing on its own monetary mandate without requiring a Commission act. Its trajectory this week is the inverse of CAIDA's: the sovereignty instrument that restricts no US firm is the only one keeping its published calendar.