📄 中文摘要
在最近的安全事件中,Anthropic的Claude Code源代码意外泄露。安全研究员Chaofan Shou在npm注册表中发现了一个名为cli.js.map的57MB文件,该文件是一个源映射,能够完整解码Anthropic的原始TypeScript源代码。此次泄露并非由于复杂的黑客攻击或零日漏洞,而是由于一个错误配置的构建脚本所致。开发者在泄露的1900个文件中发现了一些重要内容,包括三层架构的自愈内存设计,旨在应对长时间AI会话中的上下文衰退,以及未发布的模型代号,如“Fennec”和“Sonnet”。
📄 English Summary
Claude Code's Source Leaked
A significant security incident has occurred with the leak of Claude Code's source code from Anthropic. Security researcher Chaofan Shou discovered a 57MB file named cli.js.map in the npm registry, which serves as a complete source map that decodes Anthropic's original TypeScript source code. This leak was not the result of a sophisticated hack or zero-day exploit but rather a misconfigured build script. Developers found key elements within the leaked 1,900 files, including a three-layer architecture for self-healing memory designed to combat context decay in long AI sessions, as well as unreleased model codenames like 'Fennec' and 'Sonnet'.
Powered by Cloudflare Workers + Payload CMS + Claude 3.5
数据源: OpenAI, Google AI, DeepMind, AWS ML Blog, HuggingFace 等