Claude Code's source code leaked via a misconfigured npm package, revealing internal codenames, a “Self-Healing Memory” architecture, and more
Anthropic appears to have accidentally revealed the inner workings of one of its most popular and lucrative AI products …
VentureBeat Carl Franzen
Related Coverage
- Claude Code Source Snapshot for Security Research GitHub
- Anthropic's Claude Code Source Code Reportedly Leaked Via Their npm Registry Cyber Security News · Guru Baran
- Claude Code (Unofficial Source Extraction) GitHub
- Anthropic's Success Sparks Server Crunch The Information · Stephanie Palazzolo
- Appears that a big chunk of Claude Code's source code has been exposed on npm via a .map file accidentally uploaded to the public registry. … Matt Pocock
- Claude Code source just leaked on npm. — Someone accidentally pushed a .map file to the public registry. — The damage: — → ~512K lines of code … Arindam Majumder
- Claude Code's source code has been leaked via a map file in their NPM registry Hacker News
- Anthropic's Claude Code leak reveals autonomous agent tools and unreleased models Crypto Briefing · Estefano Gomez
- BREAKING — Claude Code just leaked its entire source code. Accidentally: — An Anthropic engineer published version 2.1.88 to npm with a 59.8MB source map attached (https://lnkd.in/dSKk8E4x). … Rubén Domínguez Ibar
- lmao Claude Code regex to detect people swearing at it. https://github.com/... [image] @peter@thepit.social · Peter
- Anthropic's Coding Agent Source Code Exposed in Leak The Information · Aaron Holmes
- Claude Code's Entire Source Code Was Just Leaked via npm Source Maps — Here's What's Inside DEV Community · Gabriel Anhaia
- Anthropic Accidentally Leaked the Secret Roadmap of Claude Code The Algorithmic Bridge · Alberto Romero
- 60 MB for sources? when is someone going to clean room implement this under the AGPL-3.0 and hook it to open models???? — https://venturebeat.com/... lol @jalcine@todon.eu
- Anthropic goes nude, exposes Claude Code source by accident The Register · Brandon Vigliarolo
- Anthropic mistakenly leaks its own AI coding tool's source code, just days after accidentally revealing an upcoming model known as “Mythos” Fortune · Beatrice Nolan
- Anthropic Accidentally Leaked Claude Code's Source—The Internet Is Keeping It Forever Decrypt · Jose Antonio Lanz
- Anthropic's Claude Code Source Leaked iPhone in Canada · Usman Qureshi
- Anthropic accidentally publishes Claude Code source code for anyone to find The Decoder · Matthias Bastian
- How to Make Claude Code Better at One-Shotting Implementations Towards Data Science · Eivind Kjosbakken
- Anthropic Leaks Claude Code Source via Npm Source Map WinBuzzer · Markus Kasanmascheff
- Anthropic Leaks Claude Code, a Literal Blueprint for AI Coding Agents TheNeuron · Corey Noles
- Thought this was an April Fools but it's not... “A security researcher discovered Anthropic's full CLI source code exposed through a source map file. … Rob Demain
- 🚨 What we can learn from the Claude “code leak” (3/31) — A repo surfaced: — 👉 — Instead of focusing on the leak itself, here are a few practical takeaways for AI builders: … Ray Wang
- How Claude Code works Vineet Agarwal
- Anthropic's Leaked Code Reveals the Radical Strategy That Makes Claude Code a $2.5 Billion AI Tool Inc.com · Leila Sheridan
- Entire Claude Code CLI source code leaks thanks to exposed map file Ars Technica · Samuel Axon
- Anthropic Leaks Claude Code, a Literal Blueprint for AI Coding Agents eWeek · Corey Noles
- Couple of thoughts on the AI drama of the day: — 1) The definitions of “Derivative Work” are going to be tested, as developers are already using … Fernando Lee
- Source Code for Anthropic's Claude Code Leaks at the Exact Wrong Time Gizmodo · AJ Dellinger
- Claude Code users say they're hitting usage limits faster than normal The New Stack · Meredith Shubel
- Anthropic's AI coding tool, Claude Code, accidentally reveals its source code; here's what happened Livemint · Swati Gandhi
- OpenAI Releases Codex Plugin That Runs Inside Anthropic's Claude Code Unite.AI · Alex McFarland
- OpenAI Challenges Claude Code With Cross-Platform Codex Plugin Push Techstrong.ai · James Maguire
- Claude Code's computer use: How it works and what it can do on your Mac Digit · Vyom Ramani
- Claude Code leak exposes a Tamagotchi-style ‘pet’ and an always-on agent The Verge · Emma Roth
- Anthropic Built an Operating System for Code. Then Shipped the Blueprints to npm. Implicator.ai · Maria Garcia
Discussion
-
@fried_rice
Chaofan Shou
on x
Claude code source code has been leaked via a map file in their npm registry! Code: https://pub-aea8527898604c1bbb12468b158 1d95e.r2.dev/ src.zip [image]
-
@scaling01
@scaling01
on x
A few take-aways from the Claude Code Leak: - Anthropic is actively using Capybara (Mythos) for development - they are already at Capybara v8 - Capybara still has issues with over-commenting and false-claims - Capybara has 1M context and fast mode - Numbat is another interesting
-
@sahilypatel
Sahil
on x
Anthropic built two anti-distillation systems into Claude Code to stop competitors from training on its data One injects fake tool calls into your sessions to corrupt training data. another strips all tool call details into vague summaries before they leave the CLI [image]
-
@scaling01
@scaling01
on x
they have kairos, dreaming, ultrathink, ultraplan, ultrareview and complete integration with github and slack [image]
-
@gergelyorosz
Gergely Orosz
on x
This is either brilliant or scary: Anthropic accidentally leaked the TS source code of Claude Code (which is closed source). Repos sharing the source are taken down with DMCA. BUT this repo rewrote the code using Python, and so it violates no copyright & cannot be taken down! [im…
-
@gergelyorosz
Gergely Orosz
on x
Ironic how Anthropic sells Claude Code security reviews positioned as something v powerful (costing $15-25 per PR review), and being clear they use it on all PRs... then leaking all of Claude Code's code thanks to publishing their sourcemap. AI won't save you from yourself!
-
@scaling01
@scaling01
on x
most interesting features in the Anthropic CC repo: - Kairos: always-on autonomous agent mode - dream: nightly memory consolidation - teammem: shared project memory - buddy: tamagotchi-like pet system with models
-
@stevekrouse
Steve Krouse
on x
can someone at anthropic tell us who designed this / came up with these? it's very subtle and delightful and i want to give credit where it's due
-
@thestalwart
Joe Weisenthal
on x
Me looking through the leaked Claude Code source code https://www.youtube.com/...
-
@theprimeagen
@theprimeagen
on x
i cannot believe pee and poo are on the list of bad words....
-
@valigo
Valentin Ignatev
on x
ahahahahah claude code stopped subsidizing tokens but not in the way you think [image]
-
@dariocpx
@dariocpx
on x
Anthropic can kiss goodbye to any remote chance it had to IPO
-
@netcapgirl
Sophie
on x
running a production build and realizing you just leaked the claude code source code [image]
-
@banteg
@banteg
on x
claude code uses axios btw. i think the “package managers are evil” guy was right. at this point it makes no sense to use anything but pinned or delayed deps. possibly even vendored.
-
@wesbos
Wes Bos
on x
Claude code generates random 4 character IDs Then they filter out 25 swears. Kenneth tried to tell them.. [image]
-
@angaisb_
Angel
on x
Mythos is so good at security that Claude Code source code got leaked
-
@wesbos
Wes Bos
on x
Claude Code leaked their source map, effectively giving you a look into the codebase. I immediately went for the one thing that mattered: spinner verbs There are 187 [image]
-
@thdxr
Dax
on x
claude code source is 512K lines opencode is 118K we're getting LOC mogged
-
@21prnv
Prnv Patil
on x
Instead of downloading and unzipping the whole codebase, here's a detailed, structured view of every file and folder so you can explore it like a product, not a zip dump: https://claude-code-info.vercel.app/
-
@iruletheworldmo
@iruletheworldmo
on x
wow claude code just got open sourced today is a big day.
-
@birdabo
Sui
on x
JUST IN: Claude Code's full source code just leaked. hidden features found: > kairos - an unreleased autonomous daemon mode with background sessions and memory consolidation. always on agent. > buddy system - a full tamagotchi pet system. 18 species, rarity tiers, shiny [video]
-
@davidkpiano
David K
on x
Ironically this is probably the first time that actual humans are carefully & thoroughly reviewing the Claude Code codebase
-
@icanvardar
@icanvardar
on x
claude code uses axios 😭 [image]
-
@kimmonismus
@kimmonismus
on x
HOLY, Claude Code CLI (≈500k+ lines), revealing its full agentic architecture, now on Github! [image]
-
@vineetwts
Vineet
on x
I created documentation over Claude Code's Codebase, which explains - Its pipeline - How it works - How it handles Context - How it handles Memory & More Read it here - https://www.mintlify.com/... [image]
-
@kloss_xyz
Klöss
on x
Anthropic, the $380B company we all know to be shipping at historical rates, forgot basic CI hygiene and dropped a 59.8MB source map of their entire Claude Code in npm. The 3rd time this has happened btw... I imagine Dario will be DMCA'ing the mirrors by morning, and pretending […
-
@kirat_tw
Harkirat Singh
on x
claude code is officially open source.
-
@yampeleg
Yam Peleg
on x
Just checked, this is an exact byte match to @𝚊𝚗𝚝𝚑 𝚛𝚘𝚙𝚒 𝚌-𝚊𝚒/𝚌 𝚕𝚊𝚞𝚍 𝚎-𝚌𝚘𝚍 𝚎@2.1.88 on npm. This is real.
-
@t3chfalcon
@t3chfalcon
on x
Huge Anthropic leak just dropped: the entire Claude Code CLI source is now public. A misconfigured .map file in their npm package exposed a direct download link to the full unobfuscated TypeScript codebase from Anthropic's own R2 bucket. Discovered by Chaofan Shou
-
@cryptopunk7213
@cryptopunk7213
on x
🚨this is nuts. anthropic's source code leaked unreleased features 👀 they're launching a virtual pet model (capybara 👀), agent creator wizard and more: 1. Buddy: unreleased virtual pet companion that sits on your terminal. 18 species (duck, goose, capybara, dragon), rarity
-
@realsigridjin
Sigrid Jin
on x
@Fried_rice folks, at 4am woke up to my phone blowing up with tons of notis my gf in korea worried get legal action by anthropic so did a feature port to python and pushed it so i wrote it all up using oh-my-codex @OpenAIDevs @bellman_ych try this one, look nice https://github.co…
-
@k1rallik
BuBbliK
on x
> Anthropic ships Claude Code as an npm package > someone runs ‘ls’ on the source map > entire codebase just sitting there. unobfuscated. > plugins, skills, tools, hooks, commands - everything > internal architecture of the most hyped AI coding agent, fully readable > Anthropic […
-
@kimmonismus
@kimmonismus
on x
wtf, biggest leak of the year. This is absolute insane. Claude code source code leaked. That was NOT on my bingo card.
-
@rihardjarc
Rihard Jarc
on x
People are bearish on memory, but the leaked Claude Code source code is showing us some additional memory demand that the market hasn't priced in IMO. 1. The market thinks about AI memory demand as a server-side story: HBM on H100s/B200s for inference. What the bug reports
-
@wesbos
Wes Bos
on x
swearing at claude code logs your prompt as negative in their internal analytics continue, keep going, and go on all match for the agent to keep going [image]
-
@tukifromkl
Tuki
on x
🚨 Do you understand what just happened to Anthropic.. someone on their team ran a production build of Claude Code.. the compiler generated a .map file.. which is literally a blueprint that reverses the entire codebase back to its original source.. and then they published it [vide…
-
@theo
@theo
on x
Claude Code just got open sourced again!
-
@btibor91
Tibor Blaho
on x
“UNDERCOVER MODE - CRITICAL” [image]
-
@karmedge
Robert Lukoszko
on x
So last 7 days we had - npm leakage - mercor leak - liteLLM compromised - Claude code source code leaked - railway CDN problem - axios package also compromised - delve leaked their customer data
-
@valigo
Valentin Ignatev
on x
Since it's confirmed that claude code is 90% vibe coded - you might want to switch to codex or something like that for a while, because it is pretty much guaranteed to have multiple 0-days that will be discovered now with these leaks. Even though it's supposed to only talk to
-
@zephyr_z9
@zephyr_z9
on x
why is everything getting leaked and hacked today
-
@markriedl
Mark Riedl
on bluesky
Oh wow, Anthropic accidentally leaked Claude Code and it's been cloned and made public github.com/instructkr/c...
-
@scaling01
@scaling01
on x
the leaked claude code repo is now property of the “great chinese communist party” > 2000 open issues, mostly in chinese [image]
-
@altryne
Alex Volkov
on x
Claude Code got leaked, all I wanna know if anyone was able to confirm the caching bugs that cause everyone's quotas to burn
-
@millionint
Jerry Tworek
on x
The world needs at least one more large-scale successful AI research lab
-
@paoloanzn
@paoloanzn
on x
so claude code's entire safety system for “dangerous” cyber security work is just...a text prompt literally replace it with an empty string and recompile. thats it. enjoy your unrestricted version [image]
-
@agustinlebron3
Agustin Lebron
on x
Well duh. It's pretty obvious Claude Code is largely vibecoded and no one is actually paying attention to users, systematically fixing bugs, looking at what works and doesn't work, improving the experience, etc. It's just spaghetti-at-the-wall 24/7. Welcome to AI SaaS in 2026.
-
@panzer
@panzer
on x
Remember when we griped new releases of products being a beta because nothing was finished on release well that is about to feel insanely quaint because everything is being deployed so fast no one has checked anything welcome to the yolosoft era
-
r/pwnhub
r
on reddit
Is claude code got leaked?
-
@elonmusk
Elon Musk
on x
Banger 😂 [image]
-
@itsolelehmann
Ole Lehmann
on x
i can't believe more people aren't talking about this part of the claude code leak there's a hidden feature in the source code called KAIROS, and it basically shows you anthropic's endgame KAIROS is an always-on, *proactive* Claude that does things without you asking it to. it [i…
-
@semianalysis_
@semianalysis_
on x
NON-PROFESSIONAL & ENGAGEMENT BAIT: Anyone “classically trained” to write code pre-LLMs will take on look at the leaked Claude Code repo and see that it's a pile of unmaintainable slop. However, it is becoming increasingly clear that this doesn't actually matter. Coding is no
-
@jpschroeder
Justin Schroeder
on x
Important takeaways from Claude's source code: 1. Much of Claude Code's system prompting is in the source code. This is actually surprising. Prompts are important IP, and I would have thought a sophisticated organization like Anthropic would have performed much or all of their
-
@rahatcodes
Rahat
on x
Claude Code has a regex that detects “wtf”, “ffs”, “piece of shit”, “fuck you”, “this sucks” etc. It doesn't change behavior...it just silently logs is_negative: true to analytics. Anthropic is tracking how often you rage at your AI Do with this information what you will [image]
-
@intuitmachine
Carlos E. Perez
on x
It's dumbfounding how Anthropic could accidentally release the source code of Claude Code. Are they just moving too fast for anyone to really know what safeguards are in place? Is the amount of code just too large that they can't even audit themselves for potential leaks? WTF
-
@jumperz
@jumperz
on x
dug through the leaked claude code source. 44 hidden feature flags. 20+ unshipped features... background agents, multi-agent orchestration, cron scheduling, voice mode, browser control. it's all built.. no wonder they releasing a new feature every 2 days.. everything already [ima…
-
@birdabo
Sui
on x
> anthropic's biggest leak yet. > someone made a repo about it. > repo hit 50k forks. 40k stars > anthropic starts hitting devs with DMCA. > bro got scared. > he converted everything to python. > genius move. > he aint satisfied. > rewrites everything in rust. bro is fearless. [i…
-
@roundtablespace
@roundtablespace
on x
The leaked Claude Code source has 44 hidden feature flags and 20+ unshipped features. - Background agents running 24/7 - One Claude orchestrating multiple worker Claudes - Cron scheduling for agents - Full voice command mode - Actual browser control via Playwright - Agents that […
-
@dhavalsingh7
@dhavalsingh7
on x
I jumped on the hype train a bit too quickly, because omg I was a lil too excited & I love peeking behind the curtains and esp if its one of my favorite tools. But I genuinely feel for the CC team. They do work really hard. Bugs are inevitable. This was a really really bad
-
@theprimeagen
@theprimeagen
on x
don't forget last time Anthropic, in their infinite PhD level wisdom, leaked their own source code (Feb 25) they DMCA'd all repos that had their code. Careful storing the code because Anthropic will have no mercy!
-
@patrickmoorhead
Patrick Moorhead
on x
Claude will finally get agents and orchestration with its next model. It's one thing that makes Perplexity Computer so unique.
-
@altryne
Alex Volkov
on x
If you, like me, just woke up, let me catch you up on the Claude Code Leak (I know nothing, all conjecture): > Someone inside Anthropic, got switched to Adaptive reasoning mode > Their Claude Code switched to Sonnet > Committed the .map file of Claude Code > Effectively [image]
-
@mattpocockuk
Matt Pocock
on x
Appears that a big chunk of Claude Code's source code has been exposed on npm via a .map file accidentally uploaded to the public registry. ~512K lines of code ~1,900 files HugOps to the Anthropic team, this is brutal https://github.com/...
-
@kimmonismus
@kimmonismus
on x
tl;dr upcoming Anthropic models due to leak - Claude “Mythos”, Capybara tier already in version 2, it'll have a contextwindow of 1m - Mythos comes in “fast” and regular thinking - Opus 4.7 and Sonnet 4.8 already within the code - Claude “buddy” also found, but not clear what it […
-
@mweinbach
Max Weinbach
on x
The Claude Code leak isn't a big deal anymore and while it's cool to see, it's not showing us anything we didn't know. You could ask Claude to explain its harness and it would tell you in detail. Anthropic is probably rightfully upset, but this isn't a big deal. [image]
-
@can
@can
on x
curious what the arguments for keeping Claude Code closed-source are to begin with
-
@boazbaraktcs
Boaz Barak
on x
That's nothing! The codex source code has been leaked in full here! https://github.com/...
-
@metacurity.com
Cynthia Brumfield
on bluesky
This combined with the Cisco source code theft equals a bad day for code security. [embedded post]
-
@markmadsen
Mark Madsen
on bluesky
Using AI coding tools via an outside service is totally secure and we can all trust the vendors explicitly because they are experts and professionals. [embedded post]
-
@doublepulsar.com
Kevin Beaumont
on bluesky
By human error do they mean ‘vibe coded using our own product error’ [embedded post]