Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Anthropic Claude Code source code leak from NPM release

Data Leak
First reported
Last updated
Happening score
H score 23
1 unique sources, 2 articles

Summary

Hide ▲

Anthropic mistakenly exposed proprietary Claude Code source code through a NPM release, allowing the codebase to be reconstructed and spread online. The leak involved version 2.1.88 and a 60 MB cli.js.map file. Anthropic said no customer data or credentials were exposed, but the code leak still revealed internal implementation details.

Related Happenings

GitHub internal repositories private-code leak claim

Data Leak
First: 20.05.2026 08:08 Last: 20.05.2026 08:08 Sources 1

About this happening: GitHub is facing a claimed leak of **internal repositories** after **TeamPCP** said it had access to about **4,000 private-code repos** and tried to sell samples. The alleged expo...

Latest development: 21.05.2026 17:45

A malicious version of Nx Console 18.95.0 was uploaded to Visual Studio Marketplace and Open VSX on May 18, fetched an obfuscated payload, and harvested secrets from ~/.vault-token, /etc/vault/token, .npmrc, ghp_/gho_/ghs_ tokens, AWS metadata, and other local sources; GitHub said the poisoned VS Code extension led to unauthorized access to about 3800 internal repositories.

Open Happening

Grafana Labs source code leak and extortion demand

Data Leak
First: 19.05.2026 12:15 Last: 19.05.2026 12:15 Sources 1

About this happening: The **Grafana Labs** codebase was **downloaded from its GitHub environment**, creating a risk that proprietary source code could be **released or misused**. The company said **no...

Open Happening

CISA contractor GitHub repository exposed internal credentials

Data Leak
First: 18.05.2026 23:48 Last: 18.05.2026 23:48 Sources 1

About this happening: A **CISA contractor** left a public **GitHub repository** exposing **AWS GovCloud credentials** and internal access material, creating a serious **data leak** involving sensitive...

Latest development: 22.05.2026 19:34

On May 19, Sen. Maggie Hassan and Rep. Bennie Thompson, with Rep. Delia Ramirez co-signing Thompson’s letter, sent separate letters to CISA demanding answers about the Private-CISA GitHub leak and warning that the credential exposure raised serious concerns about CISA’s internal policies, contract support, and security culture.

Open Happening

Shai-Hulud public GitHub repository credential exposure

Data Leak
First: 18.05.2026 20:28 Last: 18.05.2026 20:28 Sources 1

About this happening: **Shai-Hulud** stole **developer credentials** that were later exposed in **public GitHub repositories**, turning a theft phase into a public leak of access data. The exposed mate...

Open Happening

Mistral AI internal repositories and source code leak

Data Leak
First: 15.05.2026 01:50 Last: 15.05.2026 01:50 Sources 1

About this happening: A **TeamPCP** forum post claims **Mistral AI** source code and internal repositories were stolen and are now being offered for sale, creating a risk of public release. The alleged...

Open Happening

Timeline

  1. 02.04.2026 23:30 1 articles · 1mo ago

    Fake GitHub repositories exploit Claude Code leak with Vidar

    Campaign Scope Update

    Threat actors are using fake GitHub repositories to exploit the Claude Code source code leak and lure users searching for leaked Claude Code into downloading a 7-Zip archive that launches ClaudeCode_x64.exe and drops Vidar and GhostSocks; Zscaler says the bogus repository is SEO-optimized for Google Search queries like “leaked Claude Code.”

    Show sources
    Open in new tab
  2. 01.04.2026 03:32 1 articles · 1mo ago

    Anthropic accidentally publishes Claude Code source code on NPM

    Initial Disclosure

    Anthropic briefly published Claude Code version 2.1.88 on NPM earlier today with a 60 MB cli.js.map source map that exposed internal source code for the closed-source product, and Anthropic said no customer data or credentials were involved or exposed.

    Show sources
    Open in new tab
  3. 01.04.2026 03:00 1 articles · 1mo ago

    Anthropic issues DMCA takedowns after Claude Code code spreads online

    Legal Policy Action Update

    The leaked Claude Code source code spread on GitHub and other storage platforms, analysts identified undocumented features including Proactive mode and Dream mode, and Anthropic began issuing DMCA infringement notifications while rolling out measures to prevent another exposure.

    Show sources
    Open in new tab