frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Claude Code's source code has been leaked via a map file in their NPM registry

https://twitter.com/Fried_rice/status/2038894956459290963
199•treexs•1h ago

Comments

mapcars•1h ago
Are there any interesting/uniq features present in it that are not in the alternatives? My understanding is that its just a client for the powerful llm
swimmingbrain•1h ago
From the directory listing having a cost-tracker.ts, upstreamproxy, coordinator, buddy and a full vim directory, it doesn't look like just an API client to me.
LeoDaVibeci•1h ago
Isn't it open source?

Or is there an open source front-end and a closed backend?

yellow_lead•1h ago
No
avaer•1h ago
No, it was never open source. You could always reverse engineer the cli app but you didn't have access to the source.
agluszak•1h ago
You may have mistaken it with Codex

https://github.com/openai/codex

dragonwriter•1h ago
> Isn't it open source?

No, its not even source available,.

> Or is there an open source front-end and a closed backend?

No, its all proprietary. None of it is open source.

karimf•1h ago
The Github repo is only for issue tracker
matheusmoreira•56m ago
Wow it's true. Anthropic actually had me fooled. I saw the GitHub repository and just assumed it was open source. Didn't look at the actual files too closely. There's pretty much nothing there.

So glad I took the time to firejail this thing before running it.

treexs•1h ago
The big loss for Anthropic here is how it reveals their product roadmap via feature flags. A big one is their unreleased "assistant mode" with code name kairos.

Just point your agent at this codebase and ask it to find things and you'll find a whole treasure trove of info.

Edit: some other interesting unreleased/hidden features

- The Buddy System: Tamagotchi-style companion creature system with ASCII art sprites

- Undercover mode: Strips ALL Anthropic internal info from commits/PRs for employees on open source contributions

avaer•1h ago
(spoiler alert)

Buddy system is this year's April Fool's joke, you roll your own gacha pet that you get to keep. There are legendary pulls.

They expect it to go viral on Twitter so they are staggering the reveals.

JohnLocke4•28m ago
You heard it here first
ares623•24m ago
So close to April Fool's too. I'm sure it will still be a surprise for a majority of their users.
q3k•1h ago
The code looks, at a glance, as bad as you expect.
loevborg•1h ago
Can you give an example? Looks fairly decent to me
Insensitivity•1h ago
the "useCanUseTool.tsx" hook, is definitely something I would hate seeing in any code base I come across.

It's extremely nested, it's basically an if statement soup

`useTypeahead.tsx` is even worse, extremely nested, a ton of "if else" statements, I doubt you'd look at it and think this is sane code

luc_•1h ago
Fits with the origin story of Claude Code...
loevborg•1h ago
useCanUseTool.tsx looks special, maybe it'scodegen'ed or copy 'n pasted? `_c` as an import name, no comments, use of promises instead of async function. Or maybe it's just bad vibing...
Insensitivity•1h ago
Maybe, I do suspect _some_ parts are codegen or source map artifacts.

But if you take a look at the other file, for example `useTypeahead` you'd see, even if there are a few code-gen / source-map artifacts, you still see the core logic, and behavior, is just a big bowl of soup

Overpower0416•43m ago

  export function extractSearchToken(completionToken: {
    token: string;
    isQuoted?: boolean;
  }): string {
    if (completionToken.isQuoted) {
      // Remove @" prefix and optional closing "
      return completionToken.token.slice(2).replace(/"$/, '');
    } else if (completionToken.token.startsWith('@')) {
      return completionToken.token.substring(1);
    } else {
      return completionToken.token;
    }
  }
Why even use else if with return...
matltc•38m ago
Lol even the name is crazy
q3k•1h ago

  1. Randomly peeking at process.argv and process.env all around. Other weird layering violations, too.
  2. Tons of repeat code, eg. multiple ad-hoc implementations of hash functions / PRNGs.
  3. Almost no high-level comments about structure - I assume all that lives in some CLAUDE.md instead.
loevborg•1h ago
You're right about process.argv - wow, that looks like a maintenance and testability nightmare.
darkstar_16•42m ago
They use claude code to code it. Makes sense
s3p•50m ago
It probably exists only in CLAUDE or AGENTS.md since no humans are working on the code!
delamon•49m ago
What is wrong with peeking at process.env? It is a global map, after all. I assume, of course, that they don't mutate it.
hu3•45m ago
For one it's harder to unit test.
q3k•4m ago
It's implicit state that's also untyped - it's just a String -> String map without any canonical single source of truth about what environment variables are consulted, when, why and in what form.

Such state should be strongly typed and explicitly passed to the functions that need it, eg. as function arguments or members of an associated instance. This makes it easier to reason about the code (the caller will know that some module changes its functionality based on some state variable), it makes it easier to test (both from the mechanical point of view of having to set environment variables which is gnarly, and from the point of view of once more knowing that the code changes its behaviour based on some state/option and both cases should probably be tested).

wklm•19m ago
have a look at src/bootstrap/state.ts :D
PierceJoy•58m ago
Nothing a couple /simplify's can't take care of.
breppp•44m ago
Honestly when using it, it feels vibe coded to the bone, together with the matching weird UI footgun quirks
tokioyoyo•43m ago
Team has been extremely open how it has been vibe coded from day 1. Given the insane amount of releases, I don’t think it would be possible without it.
breppp•6m ago
I don't really care about the code being an unmaintainable mess, but as a user there are some odd choices in the flow which feel could benefit from human judgement
tokioyoyo•44m ago
It really doesn’t matter anymore. I’m saying this as a person who used to care about it. It does what it’s generally supposed to do, it has users. Two things that matter at this day and age.
FiberBundle•34m ago
This is the dumbest take there is about vibe coding. Claiming that managing complexity in a codebase doesn't matter anymore. I can't imagine that a competent engineer would come to the conclusion that managing complexity doesn't matter anymore. There is actually some evidence that coding agents struggle the same way humans do as the complexity of the system increases [0].

[0] https://arxiv.org/abs/2603.24755

tokioyoyo•21m ago
I agree, there is obviously “complete burning trash” and there’s this. Ant team has got a system going on for them where they can still extend the codebase. When time comes to it, I’m assuming they would be able to rewrite as feature set would be more solid and assuming they’ve been adding tests as well.

Reverse-engineering through tests have never been easier, which could collapse the complexity and clean the code.

samhh•30m ago
It may be economically effective but such heartless, buggy software is a drain to use. I care about that delta, and yes this can be extrapolated to other industries.
tokioyoyo•24m ago
Genuinely I have no idea what you mean by buggy. Sure there are some problems here and there, but my personal threshold for “buggy” is much higher. I guess, for a lot of other people as well, given the uptake and usage.
hrmtst93837•25m ago
Users stick around on inertia until a failure costs them money or face. A leaked map file won't sink a tool on its own, but it does strip away the story that you can ship sloppy JS build output into prod and still ask people to trust your security model.

'It works' is a low bar. If that's the bar you set you are one bad incident away from finding out who stayed for the product and who stayed because switching felt annoying.

tokioyoyo•19m ago
“It works and it’s doing what it’s supposed to do” encompasses the idea that it’s also not doing what it’s not supposed to do.

Also “one bad incident away” never works in practice. The last two decades have shown how people will use the tools that get the job done no matter what kinda privacy leaks, destructive things they have done to the user.

noosphr•18m ago
Maybe if they cared a bit more they wouldn't have leaked the entire source code of their app.

But what do I know. Code has been solved.

bob1029•1h ago
Is this significant?

Copilot on OAI reveals everything meaningful about its functionality if you use a custom model config via the API. All you need to do is inspect the logs to see the prompts they're using. So far no one seems to care about this "loophole". Presumably, because the only thing that matters is for you to consume as many tokens per unit time as possible.

The source code of the slot machine is not relevant to the casino manager. He only cares that the customer is using it.

esseph•1h ago
> The source code of the slot machine is not relevant to the casino manager.

Now do you want the list of the people it would be relevant to?

People playing the game, criminals, auditors that could shut the casino down and/or fine them.

Much bigger pool of people.

vbezhenar•1h ago
LoL! https://news.ycombinator.com/item?id=30337690

Not exactly this, but close.

ivanjermakov•29m ago
> It exposes all your frontend source code for everyone

I hope it's a common knowledge that _any_ client side JavaScript is exposed to everyone. Perhaps minimized, but still easily reverse-engineerable.

Monotoko•25m ago
Very easily these days, even if minified is difficult for me to reverse engineer... Claude has a very easy time of finding exactly what to patch to fix something
avaer•1h ago
Would be interesting to run this through Malus [1] or literally just Claude Code and get open source Claude Code out of it.

I jest, but in a world where these models have been trained on gigatons of open source I don't even see the moral problem. IANAL, don't actually do this.

https://malus.sh/

NitpickLawyer•1h ago
The problem is the oauth and their stance on bypassing that. You'd want to use your subscription, and they probably can detect that and ban users. They hold all the power there.
avaer•1h ago
You'd be playing cat and mouse like yt-dlp, but there's probably more value to this code than just a temporary way to milk claude subscriptions.
woleium•1h ago
Just use one of the distilled claude clones instead https://x.com/0xsero/status/2038021723719688266?s=46
echelon•21m ago
"Approach Sonnet"...

So not even close to Opus, then?

These are a year behind, if not more. And they're probably clunky to use.

pkaeding•32m ago
Could you use claude via aws bedrock?
karimf•1h ago
Is there anything special here vs. OpenCode or Codex?

There were/are a lot of discussions on how the harness can affect the output.

bryanhogan•1h ago
https://xcancel.com/Fried_rice/status/2038894956459290963
dheerajmp•59m ago
Source here https://github.com/chatgptprojects/claude-code/
zhisme•18m ago
https://github.com/instructkr/claude-code

this one has more stars and more popular

treexs•16m ago
won't they just try to dmca or take these down especially if they're more popular
panny•7m ago
They can't. Computer generated code cannot be copyrighted. They've stated that claude code is built with claude code. You can take this and start your own claude code project now if you like. There's zero copyright protection on this.
Squarex•54m ago
Codex and gemini cli are open source already. And plenty of other agents. I don't think there is any moat in claude code source.
rafram•47m ago
Well, Claude does boast an absolutely cursed (and very buggy) React-based TUI renderer that I think the others lack! What if someone steals it and builds their own buggy TUI app?
loveparade•34m ago
Your favorite LLM is great at building a super buggy renderer, so that's no longer a moat
theanonymousone•53m ago
I am waiting now for someone to make it work with a Copilot Pro subscription.
treexs•15m ago
does this not work? https://www.mintlify.com/samarth777/claude-code-copilot/intr...
anhldbk•52m ago
I guess it's time for Anthropic to open source Claude Code.
DeathArrow•46m ago
And while they are at it, open source Opus and Sonet. :)
lukan•51m ago
Neat. Coincidently recently I asked Claude about Claude CLI, if it is possible to patch some annoying things (like not being able to expand Ctrl + O more than once, so never be able to see some lines and in general have more control over the context) and it happily proclaimed it is open source and it can do it ... and started doing something. Then I checked a bit and saw, nope, not open source. And by the wording of the TOS, it might brake some sources. But claude said, "no worries", it only break the TOS technically. So by saving that conversation I would have some defense if I would start messing with it, but felt a bit uneasy and stopped the experiment. Also claude came into a loop, but if I would point it at this, it might work I suppose.
mikrotikker•16m ago
I think that you do not need to feel uneasy at all. It is your computer and your memory space that the data is stored and operating in you can do whatever you like to the bits in that space. I would encourage you to continue that experiment.
singularity2001•12m ago
You are not allowed to use the assistance of Claude to manufacture hacks and bombs on your computer
lukan•8m ago
Well, the thing is I do not just use my computer, but connect to their computers and I do not like to get banned. I suppose simple UI things like expanding source files won't change a thing, but the more interesting things, editing the context etc. do have that risk, but no idea if they look for it or enforce it. Their side is, if I want to have full control, I need to use the API directly(way more expensive) and what I want to do is basically circumventing it.
DeathArrow•51m ago
I wonder what will happen with the poor guy who forgot to delete the code...
epolanski•47m ago
Responsibility goes upwards.

Why weren't proper checks in place in the first place?

Bonus: why didn't they setup their own AI-assisted tools to harness the release checks?

matltc•41m ago
Ha. I'm surprised it's not a CI job
noosphr•19m ago
They aren't going to fire Claude, it's safe.
dhruv3006•47m ago
I have a feeling this is like llama.

Original llama models leaked from meta. Instead of fighting it they decided to publish them officially. Real boost to the OS/OW models movement, they have been leading it for a while after that.

It would be interesting to see that same thing with CC, but I doubt it'll ever happen.

ChicagoDave•45m ago
I hope everyone provides excellent feedback so they improve Claude Code.
DeathArrow•44m ago
Why is Claude Code, a desktop tool, written in JS? Is the future of all software JS or Typescript?
jsk2600•38m ago
Original author of Claude Code is expert on TypeScript [1]

[1] https://www.amazon.com/Programming-TypeScript-Making-JavaScr...

bigbezet•37m ago
It's not a desktop tool, it's a CLI tool.

But a lot of desktop tools are written in JS because it's easy to create multi-platform applications.

ivanjermakov•27m ago
Because it's the most popular programming language in the world?
isodev•40m ago
Can we stop referring to source maps as leaks? It was packaged in a way that wasn’t even obfuscated. Same as websites - it’s not a “leak” that you can read or inspect the source code.
bmitc•16m ago
The source is linked to in this thread. Is that not the source code?
echelon•16m ago
The only exciting leak would be the Opus weights themselves.
cbracketdash•26m ago
Once the USA wakes up, this will be insane news
echelon•17m ago
What's special about Claude Code? Isn't Opus the real magic?

Surely there's nothing here of value compared to the weights except for UX and orchestration?

Couldn't this have just been decompiled anyhow?

bkryza•17m ago
They have an interesting regex for detecting negative sentiment in users prompt which is then logged (explicit content): https://github.com/chatgptprojects/claude-code/blob/642c7f94...

I guess these words are to be avoided...

raihansaputra•7m ago
i wish that's for their logging/alert. i definitely gauge model's performance by how much those words i type when i'm frustrated in driving claude code.
mesmertech•12m ago
Was searching for the rumored Mythos/Capybara release, and what even is this file? https://github.com/chatgptprojects/claude-code/blob/642c7f94...
mesmertech•10m ago
Also saw this on twitter earlier, thought someone was just making a fake hype post thing. But turns out to be an actual prompt for capybara huh: https://github.com/chatgptprojects/claude-code/blob/642c7f94...
Diablo556•3m ago
haha.. Anthropic need to hire fixer from vibecodefixers.com to fix all that messy code..lol

Axios compromised on NPM – Malicious versions drop remote access trojan

https://www.stepsecurity.io/blog/axios-compromised-on-npm-malicious-versions-drop-remote-access-t...
871•mtud•8h ago•310 comments

Ollama is now powered by MLX on Apple Silicon in preview

https://ollama.com/blog/mlx
297•redundantly•7h ago•145 comments

7,655 Ransomware Claims in One Year: Group, Sector, and Country Breakdown

https://ciphercue.com/blog/7655-ransomware-claims-march-2025-to-march-2026
12•adulion•54m ago•0 comments

Artemis II is not safe to fly

https://idlewords.com/2026/03/artemis_ii_is_not_safe_to_fly.htm
367•idlewords•8h ago•232 comments

Universal Claude.md – cut Claude output tokens

https://github.com/drona23/claude-token-efficient
320•killme2008•9h ago•123 comments

Claude Code's source code has been leaked via a map file in their NPM registry

https://twitter.com/Fried_rice/status/2038894956459290963
205•treexs•1h ago•90 comments

Fedware: Government apps that spy harder than the apps they ban

https://www.sambent.com/the-white-house-app-has-huawei-spyware-and-an-ice-tip-line/
574•speckx•16h ago•206 comments

Google's 200M-parameter time-series foundation model with 16k context

https://github.com/google-research/timesfm
124•codepawl•5h ago•60 comments

Do your own writing

https://alexhwoods.com/dont-let-ai-write-for-you/
568•karimf•22h ago•194 comments

Clojure: The Documentary, official trailer [video]

https://www.youtube.com/watch?v=JJEyffSdBsk
217•fogus•4d ago•19 comments

GitHub backs down, kills Copilot pull-request ads after backlash

https://www.theregister.com/2026/03/30/github_copilot_ads_pull_requests/
250•_____k•5h ago•164 comments

Good CTE, Bad CTE

https://boringsql.com/posts/good-cte-bad-cte/
49•radimm•1d ago•14 comments

Android Developer Verification

https://android-developers.googleblog.com/2026/03/android-developer-verification-rolling-out-to-a...
266•ingve•12h ago•270 comments

RamAIn (YC W26) Is Hiring

https://www.ycombinator.com/companies/ramain/jobs/jezgwo5-ai-ml-research-engineer
1•svee•3h ago

How to turn anything into a router

https://nbailey.ca/post/router/
691•yabones•21h ago•236 comments

Turning a MacBook into a touchscreen with $1 of hardware (2018)

https://anishathalye.com/macbook-touchscreen/
329•HughParry•15h ago•163 comments

We're Pausing Asimov Press

https://www.asimov.press/p/pause
39•bookofjoe•1d ago•9 comments

One of the largest salt mines in the world exists under Lake Erie

https://apnews.com/article/cleveland-salt-mine-winter-road-0daf091e3d56f65766bcf6a597683893
34•1659447091•2d ago•23 comments

Oscar Reutersvärd (2021)

https://escherinhetpaleis.nl/en/about-escher/escher-today/oscar-reutersvard
38•layer8•1d ago•3 comments

Audio tapes reveal mass rule-breaking in Milgram's obedience experiments

https://www.psypost.org/audio-tapes-reveal-mass-rule-breaking-in-milgram-s-obedience-experiments-...
11•lentoutcry•2d ago•2 comments

Bird brains (2023)

https://www.dhanishsemar.com/writing/bird-brains
322•DiffTheEnder•21h ago•201 comments

Mr. Chatterbox is a Victorian-era ethically trained model

https://simonwillison.net/2026/Mar/30/mr-chatterbox/
51•y1n0•8h ago•33 comments

OpenGridWorks: The Electricity Infrasctructure, Mapped

https://www.opengridworks.com
118•jonbraun•13h ago•16 comments

Agents of Chaos

https://agentsofchaos.baulab.info/report.html
113•luu•3d ago•15 comments

Show HN: I turned a sketch into a 3D-print pegboard for my kid with an AI agent

https://github.com/virpo/pegboard
43•virpo•11h ago•11 comments

Vulnerability research is cooked

https://sockpuppet.org/blog/2026/03/30/vulnerability-research-is-cooked/
186•pedro84•16h ago•130 comments

I'm betting on ATProto

https://brittanyellich.com/atproto/
115•speckx•15h ago•108 comments

Cherri – programming language that compiles to an Apple Shortuct

https://github.com/electrikmilk/cherri
311•mihau•3d ago•61 comments

CodingFont: A game to help you pick a coding font

https://www.codingfont.com/
421•nvahalik•19h ago•213 comments

Incident March 30th, 2026 – Accidental CDN Caching

https://blog.railway.com/p/incident-report-march-30-2026-accidental-cdn-caching
59•cebert•9h ago•22 comments