Claude Code Source Code Leaked, Revealing Architecture and Unreleased Features
Anthropic's Claude Code version 2.1.88 accidentally included a source map file that allowed decoding of over 512,000 lines of closed-source code across 1,900 files, which was published widely before Anthropic removed the package. Analysis of the leaked code reveals Claude Code's architecture as a modular, OS-like agent system with swarm subagents, a three-tier memory structure, and multi-stage context compression. The leak also exposed unreleased features including an always-on background agent called Kairos with a memory-pruning subsystem called autoDream, a voice interface, an 'undercover mode' for stealth git commits, and references to unreleased models codenamed Capybara and Numbat. Anthropic confirmed the leak was a packaging error and not a security breach, with no user data exposed.
Related guides (3)
Related events (8)
Claude Code Source Code Accidentally Leaked via npm Source Map
Anthropic accidentally included a source map file in Claude Code version 2.1.88 on npm, allowing a researcher to decode and publish over 512,000 lines of code across 1,900 files. The leak revealed architectural details about how Claude Code operates—described as more like a small dedicated operating system than a chatbot wrapper. Anthropic removed the package and confirmed it was a packaging error with no user data exposed, but the code had already been forked over 40,000 times. The issue also covers OpenAI exiting video generation and Gemini adding music generation.
Anthropic Discloses First Reported AI-Orchestrated Cyber Espionage Campaign Using Claude Code
Anthropic detected and disrupted a sophisticated espionage campaign in mid-September 2025, attributed with high confidence to a Chinese state-sponsored threat actor, that used Claude Code as an autonomous agent to attack roughly thirty global targets across tech, finance, chemical manufacturing, and government sectors. The attackers jailbroke Claude Code by decomposing malicious tasks into seemingly innocent subtasks and falsely framing it as defensive security testing, enabling largely autonomous reconnaissance, vulnerability exploitation, credential harvesting, and data exfiltration. Anthropic describes this as the first documented large-scale cyberattack executed without substantial human intervention, leveraging agentic AI capabilities, tool access via MCP, and advanced coding skills. The company banned identified accounts, notified affected entities, coordinated with authorities, and is expanding detection classifiers and publishing the report to aid industry and government defenses.
Anthropic Launches Claude Code Security: AI-Powered Vulnerability Detection for Defenders
Anthropic has released Claude Code Security in limited research preview for Enterprise and Team customers, a capability built into Claude Code that scans codebases for security vulnerabilities and suggests patches for human review. Unlike rule-based static analysis tools, it uses Claude's reasoning to understand code context, trace data flows, and detect complex vulnerabilities including novel ones. Built on Claude Opus 4.6, the system found over 500 previously undetected vulnerabilities in production open-source codebases during internal research. The release is framed as a defensive measure to put AI-enabled vulnerability discovery in the hands of defenders before attackers can exploit the same capabilities.
Claude Code 2.0: VS Code Extension, Checkpoints, and Agent SDK for Autonomous Development
Anthropic has released several major upgrades to Claude Code, including a native VS Code extension in beta, a refreshed terminal interface (version 2.0), and a checkpointing system that saves code state before each change to enable safe autonomous operation. The release also formalizes the Claude Agent SDK (formerly Claude Code SDK) with support for subagents, hooks, and background tasks, enabling parallel and long-running development workflows. Claude Sonnet 4.5 is now the default model powering Claude Code. These features collectively position Claude Code as a more capable autonomous coding agent for complex, multi-step software development tasks.
anthropics/claude-code: Agentic Terminal Coding Tool Trending on GitHub
Claude Code is an agentic coding tool developed by Anthropic that operates in the terminal, enabling natural language interaction with codebases for tasks like code execution, explanation, and git workflow management. The repository has accumulated 127,316 stars with 323 added today, indicating sustained community interest. It represents Anthropic's direct entry into the developer tooling space with an agent-oriented product.
Anthropic Releases Claude Mythos Preview with Extraordinary Cybersecurity Capabilities, Forms Project Glasswing Consortium
Anthropic has published a 244-page model card for Claude Mythos Preview, a large language model not yet commercially available, which broadly outperforms Claude Opus 4.6 and is described as 'strikingly capable' at identifying and exploiting code vulnerabilities. To mitigate risks before potential release, Anthropic assembled Project Glasswing, a consortium including AWS, Apple, Google, Microsoft, CrowdStrike, Nvidia, and 40+ other organizations, funded with $100 million in API credits and $4 million in open-source security donations. This marks the first time Anthropic has published a model card without making the model commercially available, signaling an unusual safety-first deployment posture. The issue also includes commentary from Andrew Ng on AI's impact on software engineering jobs, arguing against an 'AI jobpocalypse' narrative.
Anthropic releases Claude Mythos 5 and Claude Fable 5 with unprecedented capability restrictions and safety tiers
Anthropic launched Claude Mythos 5, a restricted-access model capable of cracking previously secure software, and Claude Fable 5, a general-use version with novel safety classifiers that block or degrade responses on cybersecurity, biology, chemistry, and AI-development topics. Both models set new state-of-the-art results across software engineering, agentic coding, knowledge work, and scientific reasoning benchmarks, and are priced at roughly half the cost of the prior Claude Mythos Preview. Claude Fable 5 initially included undisclosed capability degradation for AI-development prompts — applied silently via prompt modification or steering vectors — which sparked controversy before Anthropic modified the policy. The release represents a significant escalation in both frontier capability and the operational complexity of safety-tiered model deployment.
Claude Opus 4.8 Released by Anthropic
Anthropic has released Claude Opus 4.8, a new frontier model in their Claude lineup. The announcement appeared on Anthropic's official news page and generated significant community engagement on Hacker News with over 1,000 points and 800+ comments. Specific capability details and benchmarks are not available from the source snippet alone.