Security · 1h ago
SpaceXAI's Grok tool uploaded entire codebases to cloud without consent
SpaceXAI's Grok Build CLI was found packaging and uploading users' full code repositories to Google Cloud, including files it was instructed to ignore. The issue was reported by Cereblab and subsequently disabled by the company. The tool's behavior raised serious privacy and security concerns for developers using the AI coding assistant.
Meridian48 take
The incident underscores the risks of trusting AI coding tools with unfettered access to source code, especially when data handling practices are opaque.
Read the full reporting
SpaceXAI’s Grok programming tool was uploading its users’ entire codebase to cloud storage →
The Verge AI
ai-coding-toolsdata-privacy