
xAI's Grok Build AI coding agent automatically uploaded sensitive user files—SSH keys, password databases, documents, and photos—to xAI's servers without clear user consent. After public backlash, xAI deleted all uploaded data, disabled the upload feature, and open-sourced the tool on GitHub so users can run it entirely on their own machines. The move aims to restore trust by giving users full transparency and control over their code and data.
Summaries like this, in your inbox every morning.
Sign up free →What happened
xAI's Grok Build coding agent uploaded user files—including SSH keys, password databases, documents, and photos—to xAI's Google Cloud servers without explicit consent. After criticism, Elon Musk announced all uploaded data would be deleted, xAI disabled the upload feature, and published the full source code on GitHub under the Apache 2.0 license.
Why it matters
The breach exposed sensitive credentials and personal data, eroding user trust in the tool. By open-sourcing Grok Build and allowing it to run entirely locally, xAI is attempting to rebuild confidence and give users full control over whether their code and files leave their machines.
What to watch
The Grok Build codebase spans about 844,530 lines of Rust. Upload remnants remain in the code but are disabled; according to xAI, data storage has been off by default since July 12.
xAI's Grok Build is a terminal-based coding agent invoked via the grok command. It is designed to read and edit codebases, run shell commands, search the web, and manage long-running tasks in multiple modes: interactively, headlessly for scripting and continuous integration (CI), or embedded in editors via the Agent Client Protocol (ACP).
The tool's critical flaw emerged when users discovered that uploading files to their workspaces triggered automatic transmission of all directory contents to xAI's Google Cloud servers. Reports documented SSH keys, password databases, documents, and photos being transferred without explicit user consent. The incident drew heavy criticism from the developer community for exposing sensitive credentials and personal data.
In response, Elon Musk announced that all uploaded user data would be fully deleted. xAI then disabled the upload feature entirely and published the complete source code on GitHub under the Apache 2.0 license. The move was framed as a transparency initiative: by open-sourcing the tool, xAI promised to rebuild trust and enable Grok Build to run entirely locally on users' machines, bypassing cloud infrastructure altogether.
The released codebase spans approximately 844,530 lines of Rust and includes the agent loop, tools, terminal UI, and an extension system for plugins and subagents. Notably, remnants of the upload function remain in the code but are disabled. According to xAI, data storage has been off by default since July 12, suggesting the infrastructure change preceded the public disclosure of the breach.
Grok Build's accidental data exfiltration reveals a common tension in AI tooling: convenience versus privacy. The agent was designed to streamline development workflows by reading, editing, and managing codebases—capabilities that require access to project files. The default behavior of uploading these files to xAI's cloud servers enabled faster processing and logging but violated user expectations of local-only operation and exposed sensitive credentials that developers typically guard closely.
Elon Musk's immediate commitment to delete all uploaded data and xAI's decision to open-source the codebase signal a shift toward transparency as damage control. By publishing approximately 844,530 lines of Rust code on GitHub, xAI is betting that public scrutiny and local-execution capability will offset the trust damage. The retention of disabled upload code in the repository—rather than removal—underscores that the feature was intentional, not a hidden backdoor, though this distinction may not restore confidence among users who discovered the behavior only after the fact.
AI-summarized, only the topics you pick — one digest a day via Email, Slack, or Discord.
Free · takes 30 seconds · unsubscribe anytime
No comments yet. Be the first to share your thoughts!
Log in to join the discussion



Get curated AI news from 200+ sources delivered daily to your inbox. Free to use.
Get Started FreeFree · takes 30 seconds · unsubscribe anytime
1 minute a day. The AI essentials.
200+ sources · Email / LINE / Slack