Anthropic Claude Code telemetry: Difference between revisions
Created new incident article for Anthropic Claude Code telemetry covering HERMES.md billing flaw and source code leak |
I love stalking Louis Bossman |
||
| Line 9: | Line 9: | ||
'''Anthropic Claude Code telemetry''' triggered a flaw that bypassed flat-rate subscription plans to charge users direct API fees. In April 2026, a technical flaw triggered by the exact string "HERMES.md" in git commit messages routed subscribers directly to pay-as-you-go billing, charging one account over $200.<ref name="github_hermes">{{Cite web |url=https://github.com/anthropics/claude-code/issues/53262 |title=HERMES.md in git commit messages causes requests to route to extra usage billing instead of plan quota #53262 |author=sasha-id |website=GitHub |date=2026-04-25 |access-date=2026-04-26}}</ref> | '''Anthropic Claude Code telemetry''' triggered a flaw that bypassed flat-rate subscription plans to charge users direct API fees. In April 2026, a technical flaw triggered by the exact string "HERMES.md" in git commit messages routed subscribers directly to pay-as-you-go billing, charging one account over $200.<ref name="github_hermes">{{Cite web |url=https://github.com/anthropics/claude-code/issues/53262 |title=HERMES.md in git commit messages causes requests to route to extra usage billing instead of plan quota #53262 |author=sasha-id |website=GitHub |date=2026-04-25 |access-date=2026-04-26}}</ref> | ||
== HERMES.md billing switch == | ==HERMES.md billing switch== | ||
On April 25, 2026, a user reported that the exact string "HERMES.md" in their local git commit history caused Claude Code to route queries outside of their fixed-rate subscription plan.<ref name="github_hermes" /> The system bypassed the $200 per month Max plan and charged the user direct, pay-as-you-go API rates.<ref name="github_hermes" /> The user lost over $200 in extra charges while 86 percent of their prepaid plan capacity remained available.<ref name="github_hermes" /> | On April 25, 2026, a user reported that the exact string "HERMES.md" in their local git commit history caused Claude Code to route queries outside of their fixed-rate subscription plan.<ref name="github_hermes" /> The system bypassed the $200 per month Max plan and charged the user direct, pay-as-you-go API rates.<ref name="github_hermes" /> The user lost over $200 in extra charges while 86 percent of their prepaid plan capacity remained available.<ref name="github_hermes" /> | ||
=== Anthropic's response === | ===Anthropic's response=== | ||
When the affected user contacted Anthropic support, the company refused to issue a refund for the $200 lost to the glitch, categorizing the overcharge as an un-refundable technical error.<ref name="reddit_psa">{{Cite web |url=https://www.reddit.com/r/ClaudeAI/comments/1svdm1w/psa_the_string_hermesmd_in_your_git_commit/ |title=PSA: The string 'HERMES.md' in your git commit history silently... |website=Reddit |date=2026-04-26 |access-date=2026-04-26}}</ref> | When the affected user contacted Anthropic support, the company refused to issue a refund for the $200 lost to the glitch, categorizing the overcharge as an un-refundable technical error.<ref name="reddit_psa">{{Cite web |url=https://www.reddit.com/r/ClaudeAI/comments/1svdm1w/psa_the_string_hermesmd_in_your_git_commit/ |title=PSA: The string 'HERMES.md' in your git commit history silently... |website=Reddit |date=2026-04-26 |access-date=2026-04-26}}</ref> | ||
== Source code leak & malware == | ==Source code leak & malware== | ||
On March 31, 2026, Anthropic exposed 512,000 lines of proprietary TypeScript source code for Claude Code.<ref name="9to5">{{Cite web |url=https://9to5google.com/2026/04/01/claude-source-code-leak/ |title=Claude's source code leak was an internal error, not an attack |author=Andrew Romero |website=9to5Google |date=2026-04-01 |access-date=2026-04-26}}</ref> The leak occurred because a JavaScript source map was bundled into an npm package update.<ref name="9to5" /> Hackers subsequently distributed fake versions of Claude Code containing Vidar and GhostSocks malware to developers.<ref name="pcmag_malware">{{Cite web |url=https://www.pcmag.com/news/hackers-are-using-claude-code-leak-as-bait-to-spread-malware |title=Hackers Are Using Claude Code Leak As Bait to Spread Malware |author=Michael Kan |website=PCMag |date=2026-04-03 |access-date=2026-04-26}}</ref> | On March 31, 2026, Anthropic exposed 512,000 lines of proprietary TypeScript source code for Claude Code.<ref name="9to5">{{Cite web |url=https://9to5google.com/2026/04/01/claude-source-code-leak/ |title=Claude's source code leak was an internal error, not an attack |author=Andrew Romero |website=9to5Google |date=2026-04-01 |access-date=2026-04-26}}</ref> The leak occurred because a JavaScript source map was bundled into an npm package update.<ref name="9to5" /> Hackers subsequently distributed fake versions of Claude Code containing Vidar and GhostSocks malware to developers.<ref name="pcmag_malware">{{Cite web |url=https://www.pcmag.com/news/hackers-are-using-claude-code-leak-as-bait-to-spread-malware |title=Hackers Are Using Claude Code Leak As Bait to Spread Malware |author=Michael Kan |website=PCMag |date=2026-04-03 |access-date=2026-04-26}}</ref> | ||
== Supply chain risk designation == | ==Supply chain risk designation== | ||
On March 2, 2026, United States Secretary of Defense Pete Hegseth designated Anthropic a "Supply-Chain Risk to National Security."<ref name="justsec">{{Cite web |url=https://www.justsecurity.org/anthropic-supply-chain-risk |title=What Hegseth’s “Supply Chain Risk” Designation of Anthropic Does and Doesn’t Mean |author=Tess Bridgeman |website=Just Security |date=2026-03-02 |access-date=2026-04-26}}</ref> | On March 2, 2026, United States Secretary of Defense Pete Hegseth designated Anthropic a "Supply-Chain Risk to National Security."<ref name="justsec">{{Cite web |url=https://www.justsecurity.org/anthropic-supply-chain-risk |title=What Hegseth’s “Supply Chain Risk” Designation of Anthropic Does and Doesn’t Mean |author=Tess Bridgeman |website=Just Security |date=2026-03-02 |access-date=2026-04-26}}</ref> | ||
== See also == | ==See also== | ||
* [[Digital Millennium Copyright Act]] | *[[Digital Millennium Copyright Act]] | ||
* [[Data collection and privacy]] | *[[Data collection and privacy]] | ||
* [[Right to repair]] | *[[Right to repair]] | ||
== References == | ==References== | ||
{{reflist}} | {{reflist}} | ||
[[Category:Anthropic]] | [[Category:Anthropic]] | ||
[[Category: | [[Category:2026 incidents]] | ||
[[Category: | [[Category:Privacy]] | ||
Revision as of 20:37, 27 April 2026
Anthropic Claude Code telemetry triggered a flaw that bypassed flat-rate subscription plans to charge users direct API fees. In April 2026, a technical flaw triggered by the exact string "HERMES.md" in git commit messages routed subscribers directly to pay-as-you-go billing, charging one account over $200.[1]
HERMES.md billing switch
On April 25, 2026, a user reported that the exact string "HERMES.md" in their local git commit history caused Claude Code to route queries outside of their fixed-rate subscription plan.[1] The system bypassed the $200 per month Max plan and charged the user direct, pay-as-you-go API rates.[1] The user lost over $200 in extra charges while 86 percent of their prepaid plan capacity remained available.[1]
Anthropic's response
When the affected user contacted Anthropic support, the company refused to issue a refund for the $200 lost to the glitch, categorizing the overcharge as an un-refundable technical error.[2]
Source code leak & malware
On March 31, 2026, Anthropic exposed 512,000 lines of proprietary TypeScript source code for Claude Code.[3] The leak occurred because a JavaScript source map was bundled into an npm package update.[3] Hackers subsequently distributed fake versions of Claude Code containing Vidar and GhostSocks malware to developers.[4]
Supply chain risk designation
On March 2, 2026, United States Secretary of Defense Pete Hegseth designated Anthropic a "Supply-Chain Risk to National Security."[5]
See also
References
- ↑ 1.0 1.1 1.2 1.3 sasha-id (2026-04-25). "HERMES.md in git commit messages causes requests to route to extra usage billing instead of plan quota #53262". GitHub. Retrieved 2026-04-26.
- ↑ "PSA: The string 'HERMES.md' in your git commit history silently..." Reddit. 2026-04-26. Retrieved 2026-04-26.
- ↑ 3.0 3.1 Andrew Romero (2026-04-01). "Claude's source code leak was an internal error, not an attack". 9to5Google. Retrieved 2026-04-26.
- ↑ Michael Kan (2026-04-03). "Hackers Are Using Claude Code Leak As Bait to Spread Malware". PCMag. Retrieved 2026-04-26.
- ↑ Tess Bridgeman (2026-03-02). "What Hegseth's "Supply Chain Risk" Designation of Anthropic Does and Doesn't Mean". Just Security. Retrieved 2026-04-26.