Anthropic's IPO Dreams Get Debugged: 512K Lines of 'Oops' Land on GitHub

Well, this is embarrassing. Anthropic accidentally published 512,000 lines of Claude Code's proprietary source code through a debug file bundled into a routine npm update on March 31. The leak exposed the full architecture of the company's flagship AI coding tool, which generates an estimated $2.5 billion in annualized recurring revenue. Someone at one of AI's most valuable startups apparently thought shipping your entire codebase to the world was just another Tuesday afternoon.

Security researcher Chaofan Shou spotted the exposed source map file in Claude Code version 2.1.88 and posted a download link on X. The codebase spread across GitHub within hours, accumulating tens of thousands of forks before Anthropic's DMCA takedowns hit. Shou probably had the most retweeted moment of his career while the rest of us watched the great AI heist unfold in real-time. The forks came faster than a shitcoin launchpad.

The incident landed just five days after a separate CMS misconfiguration exposed roughly 3,000 internal files, including details on the unreleased "Mythos" model. Two accidental disclosures in one week raise operational questions for a company valued at $350 billion and reportedly considering an IPO in Q4 2026. For a company prepping to go public, Anthropic is giving "move fast and break things" a whole new meaning. Maybe the IPO roadshow pitch includes "we're basically a leaky faucet, but make it enterprise."

Korean-Canadian developer Sigrid Jin, profiled by the Wall Street Journal for consuming 25 billion Claude Code tokens last year, completed a clean-room Python rewrite before sunrise. His repository, claw-code, hit 50,000 GitHub stars within two hours of publication. This man consumed more tokens than most of us will in three lifetimes, then basically said "hold my coffee" and reverse-engineered the whole thing overnight. The speedrun community has nothing on this guy.

The leaked files revealed an internal feature called "Undercover Mode," built specifically to prevent Claude from leaking Anthropic's secrets. The code also exposed 44 feature flags, an unreleased background daemon called KAIROS, and internal model codenames, including "Capybara" for a Claude 4.6 variant. Nothing says "we take security seriously" like a feature literally called Undercover Mode that got leaked. The irony is so thick you could chew it.

Anthropic confirmed the leak to multiple outlets, calling it a packaging error caused by human error. Enterprise clients, who account