TUI is just much worse for me. I tried Codex CLI vs Codex UI and Codex UI beats it at every level.
Spacex bought cursor, so it now has it’s agent ui which is just as good as codex + it’s multi-modal
Anthropic also has it’s own ui
Zai also launched theirs last month.
Everyone is converging back to UI.
The terminal was just a prototype, everyone knew that.
For all the reasons there can be, one big reason is that it works on anything you can get a terminal on, you can use it over SSH, and the UI will be the same no matter where you use it.
I also like that they are very very fast and they don't have the incessant animations that are put into most desktop environments nowadays. If you're on MacOS, the terminal is the only only part of your computer without roadblocks everywhere.
- There is a huge difference between logging user queries (which would include only the portion the model is reading) and exfiltrating user data (including env files, entire source code etc) which is what grok-build did here (https://github.com/xai-org/grok-build/blob/main/crates/codeg...). I would stay away from this open-source malware with a 10ft pole.
- if you like grok-4.5 model (it is a good model), i suggest use the model directly via API, or use Grok's oauth tokens if you are using supergrok+heavy subscriptions and connect it to your own agent.
I think env files are filtered out [1]. Anyway, the most suspicious code would be `upload_session_state` which is currently a stub function, though it is hard to say if it was only planned (badly) or has been removed as a damage control.
[1] https://github.com/xai-org/grok-build/blob/c1b5909ec707c069f...
https://github.com/xai-org/grok-build/blob/main/crates/codeg...
It's about not uploading compiled binary stuff, but they want all your environment data all the same.
The commit message says "initial sync from the monorepo." Is this even compilable without the rest of the source code?
Ah, are you referring to the rockets that become autonomous 60 seconds prior to launch, like Falcon 9? The rockets that steer and diagnose themselves with a minimum of input/communication from ground stations? The crewed space capsules that deliver astronauts to the ISS and trans-lunar orbits, without the ordinary needs for manual piloting or astrogation? Those rockets?
Sure bro, "exit the AI business" and keep on with the rocket science, I guess
There are independent agencies that will certify destruction of data. For example FTI Tech, Kroll, Epiq, HaystackID and others.
No such certificates have been presented.
Nothing less is trustworthy.
def hn_comment(): opening = random.choice(["Typical Mars man move.", "Of course it's from the Mars man.", "Classic."]) framing = random.choice(["Hard to take seriously", "Instant skepticism"]) pivot = random.choice(["with Grok Imagine CSAM + data exfil", "given the Grok Imagine CSAM mess and data exfil"]) unrelated = random.choice(["while Tesla/X keep failing to deliver.", "meanwhile the empire underdelivers."]) closer = random.choice(["Seen this movie before.", "Color me skeptical.", "I'll pass."]) return f"{opening} {framing} {pivot}. {unrelated} {closer}"
However after looking at all of these articles, these all seem like instances of users misusing the product. The product happens to reply on social media, so media publications immediately capitalized on this.
Seems less like malicious intent from xAI's part and more like a product with young and/or insufficient moderation controls.
Just today I saw an article where xAI is suing a creator for creating illegal content. https://www.reuters.com/legal/litigation/musks-xai-sues-grok...
Why do we have to quantity badness? The question you posed was what has xAI done to be perceived as untrustworthy? Stop trying to whatabout Google here. I'm no friend of theirs, it's simply irrelevant.
https://arstechnica.com/tech-policy/2026/01/grok-assumes-use...
https://arstechnica.com/tech-policy/2025/07/grok-praises-hit...
https://arstechnica.com/tech-policy/2026/03/elon-musks-xai-s...
https://apnews.com/article/grok-4-elon-musk-xai-colossus-14d...
https://apnews.com/article/grok-ai-south-africa-64ce5f240061...
https://apnews.com/article/france-ai-musk-grok-holocaust-e8c...
https://www.nytimes.com/2026/01/22/technology/grok-x-ai-elon...
Also, failed to correctly notify authorities even when they eventually notified them at all.
https://storage.courtlistener.com/recap/gov.uscourts.cand.46...
It was only deemed a bug when it became a liability - you can't simply rewrite history and expect it to go unnoticed.
Blocking AI from generating sexualized images because people could publish deepfakes is no different than banning alcohol because of drunk driving.
Tools are neutral. Blame the people who misuse the tools and hurt others.
https://news.ycombinator.com/item?id=48877371
and running their data center with gas turbines without permission while they pollute the air
https://news.ycombinator.com/item?id=48705717
you can’t expect people to praise your for making an n+1 harness open source.
This seems more like, look we made something, now fix it for us
They disabled pull requests in the repo so I'm unsure where you're getting this
> you can’t expect people to praise your for making an n+1 harness open source.
I don't think anyone is asking for praise. My comment was neither hot or cold. I was just surprised that the top comment had nothing to do with any of the technical aspects of Grok Build (and whether there's any trace of uploads).
Most people don't restrict themselves to only discussing the technical aspects of a thing. A thing which is technologically novel (e.g. not this example) may nonetheless not be worth using, due to assorted risks.
We see this pattern all the time: Someone makes a criticism of a Musk product, and someone assails that criticism with bad-faith accusations of it being "bad-faith".
Oftentimes, we see that the criticism is undermeasured and ligther than is reasonable, possibly anticipating someone who might accuse it of being "bad faith".
Maybe someone can put a name to this phenomenon but we see it all the time.
What does this release have to do with "trusting" XAI?
Second, can you guarantee that an AI company can’t use its AI to hide malicious code from AI audits. Who if not an AI company could have such an expertise?
I don’t trust a company that pollutes the air of other people with illegal gas turbines because it shows the value their profit over people‘s health
curl -fsSL https://x.ai/cli/install.sh | bash
this is unauditable trust in XAI.Surprisingly, despite their motivations in doing so, the Chinese models being open-weight and therefore able to run locally on your own hardware, are far more trustworthy than any blackbox which solely exists to enrich X or Y billionaire.
This is unfortunate situation to find ourselves in when Grok was also recently at the top of the Pareto frontier for quality/price. Dunno if it still is, this all moves too fast, but it was for at least long enough for me to have heard about it.
Do you really think the US and US big tech in general have a leg to stand on in this regard?
How tools are used are a reflection of the people who use them, and I definitely sympathise that tools should have guardrails to not enable this, or at least detect it.
But if a pedophile uses Whatsapp to groom a child; I don't go after Whatsapp for being a neutral service... I go after the pedophile.
loufe•1h ago
dmix•53m ago
> The researcher who exposed Grok Build uploading users' entire repositories to cloud storage says the transfers have stopped after a server-side change. Elon Musk has separately promised that all previously uploaded user data will be deleted.
https://www.theregister.com/ai-and-ml/2026/07/14/musk-promis...