Anthropic's Claude Code CLI source code leaks online

Anthropic's Claude Code command line interface source code has leaked online after a packaging error in a recent release. The incident exposed over 512,000 lines of code from nearly 2,000 TypeScript files. The company described it as human error with no sensitive data involved.

Anthropic released version 2.1.88 of its Claude Code npm package on March 31, 2026. The package inadvertently included a source map file, granting access to the full codebase. Security researcher Chaofan Shou first highlighted the issue on X, sharing a link to an archive of the files. The code soon appeared in a public GitHub repository, which has been forked tens of thousands of times since then. No customer data or credentials were exposed, according to Anthropic officials, who called it a release packaging issue caused by human error, not a security breach. The company stated: “Earlier today, a Claude Code release included some internal source code. No sensitive customer data or credentials were involved or exposed. This was a release packaging issue caused by human error, not a security breach. We’re rolling out measures to prevent this from happening again.” Developers quickly began analyzing the leaked code. For instance, one overview detailed Claude Code’s memory architecture, including background memory rewriting and validation steps. Another analysis noted around 40,000 lines for a plugin-like tool system and 46,000 for the query system, describing it as a sophisticated, production-grade developer tool beyond a simple API wrapper. Prior community efforts had partially reverse-engineered Claude Code, but this leak provides unprecedented completeness. The exposure offers competitors insights into Anthropic’s architecture and potential vulnerabilities in its guardrails.

Labaran da ke da alaƙa

Illustration of Anthropic restricting Claude Mythos AI and launching Project Glasswing consortium with tech giants to address cybersecurity vulnerabilities.
Hoton da AI ya samar

Anthropic restricts Claude Mythos AI release and launches Project Glasswing over cybersecurity risks

An Ruwaito ta hanyar AI Hoton da AI ya samar

Anthropic has limited access to its Claude Mythos Preview AI model due to its superior ability to detect and exploit software vulnerabilities, while launching Project Glasswing—a consortium with over 45 tech firms including Apple, Google, and Microsoft—to collaboratively patch flaws and bolster defenses. The announcement follows recent data leaks at the firm.

Anthropic announced updates to its Claude Design tool on June 17 that add design system imports, tighter integration with Claude Code, and new export options. The changes target enterprise teams needing AI-generated designs to align with brand guidelines and move smoothly into production.

An Ruwaito ta hanyar AI

Anthropic announced a major computing deal with SpaceX on Wednesday that immediately boosts rate limits for Claude Code users. The agreement gives the AI company full access to a large data center in Memphis, Tennessee.

Cybersecurity researchers have identified a fraudulent website mimicking the popular AI tool Claude that delivers backdoor malware to visitors. The discovery highlights how cybercriminals are capitalizing on growing interest in artificial intelligence platforms.

An Ruwaito ta hanyar AI

A Palo Alto security firm says it built a working macOS exploit in five days with help from Anthropic's Claude Mythos Preview. The researchers met Apple officials at Apple Park to discuss the findings.

Wannan shafin yana amfani da cookies

Muna amfani da cookies don nazari don inganta shafin mu. Karanta manufar sirri mu don ƙarin bayani.
Ƙi