Anthropic accidentally exposed large portions of Claude Code through an npm packaging and source map issue, triggering rapid mirroring and security scrutiny. Several argue it undermines trust in software that can access organizational data and devices continuously.
Claude code source code has been leaked via a map file in their npm registry!
Anthropic accidentally exposed 512,000 lines of Claude Code via an npm packaging error.
The state of Claude Code’s source code is not great news. It shows that a company you and your organization are trusting with your data, and allowing full control over your devices 24/7, is failing to properly secure its own software.
Anthropic inadvertently exposed Claude Code’s source in a public npm release, prompting rapid online sharing and analysis while asserting no customer data was compromised and detailing a human-error packaging issue.
Anthropic's Claude Code source code fully leaked. via a forgotten .map file in their npm package!
🔥 Anthropic accidentally exposed 512,000 lines of Claude Code via an npm packaging error.
One missing line away from keeping 512k lines of TypeScript completely secret
Claude had their source code map thingie leaked?
One thing the big leak today proves is how fucking important prompting is to an agent framework.
It's a wake up call.
Claude Code source code accidentally leaked in NPM package
I used Claude code to search for CVEs in Claude’s leaked source code and what I found was GAWDY
claude code has always been open source for anyone who knows the strings command 😁
This finding is one of many signals tracked across Cyber Security. The live feed updates every few hours with new expert voices, debates, and emerging ideas.
← Back to Cyber Security