AIToday

Anthropic's accidental leak of 512,000 lines of Claude Code source exposes security vulnerabilities and unreleased features across enterprise AI deployments.

VentureBeat AIApr 2, 20261 min read
Anthropic's accidental leak of 512,000 lines of Claude Code source exposes security vulnerabilities and unreleased features across enterprise AI deployments.

Summaries like this, in your inbox every morning.

Sign up free →

3 Key Points

  1. On March 31, Anthropic shipped a 59.8 MB source map file in npm package version 2.1.88 containing unobfuscated TypeScript code across 1,906 files

  2. The exposed code revealed the complete permission model, bash security validators, 44 unreleased feature flags, and references to unannounced models

  3. Security researcher Chaofan Shou discovered and publicly disclosed the leak on X at approximately 4:23 UTC, leading to rapid spread across GitHub mirror repositories

  4. Anthropic attributed the exposure to human packaging error with no customer data or model weights compromised, but containment efforts including copyright takedowns proved ineffective

Discussion

No comments yet. Be the first to share your thoughts!

Log in to join the discussion

Related Articles

Stay ahead with AI news

Get curated AI news from 200+ sources delivered daily to your inbox. Free to use.

Get Started Free

Free · takes 30 seconds · unsubscribe anytime

1 minute a day. The AI essentials.

200+ sources · Email / LINE / Slack

Get it free →