Claude Code source leak reveals how much info Anthropic can hoover up about you and your system

That’s disturbing, but hardly surprising.

AI is a surveillance technology.

Every other function is bait.

One of the more curious details to emerge from the publication of Claude Code’s source is that Anthropic tries to hide AI authorship from contributions to public code repositories – possibly a response to the open source projects that have disallowed AI code contributions. Prompt instructions in a file called undercover.ts state, “You are operating UNDERCOVER in a PUBLIC/OPEN-SOURCE repository. Your commit messages, PR titles, and PR bodies MUST NOT contain ANY Anthropic-internal information. Do not blow your cover.”

People don’t like AI contributions so they hide it, cool

“I don’t think people realize that every single file Claude looks at gets saved and uploaded to Anthropic,” the researcher “Antlers” told us. “If it’s seen a file on your device, Anthropic has a copy.”

No shit.

Remember, they’re the ethical AI company.

I started reading and thought that it isn’t that bad, just what I expected from closed source software but then came this:

Team Memory Sync, an unreleased internal project. There’s a bidirectional sync service (src/services/teamMemorySync/index.ts) that connects local memory files to api.anthropic.com/api/claude_code/team_memory. It provides a way to share memories with other team members within an organization. The service includes a secret scanner (secretSanner.ts) that uses regex patterns for around 40 known token and API key patterns (AWS, Azure, GCP, etc). But sensitive data that doesn’t match these regexes might be exposed to other team members through memory sync.

This seems like a great idea!