[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"branding":3,"analytics":7,"article-researcher-claims-claude-code-secretly-tags-its-own-requests":10,"sections":40},{"siteName":4,"siteTagline":5,"publisherName":4,"contactEmail":6},"The Revision","Tech news, decoded.","editor@therevision.news",{"gaMeasurementId":8,"adsenseClientId":9},"G-ZW2MV82GYR","ca-pub-8533917693782264",{"article":11},{"id":12,"slug":13,"title":14,"dek":15,"body_md":16,"tags_json":17,"published_at":18,"created_at":19,"updated_at":20,"status":21,"review_note":22,"review_notes":23,"image_url":22,"persona_id":22,"persona_name":22,"section":30,"tags":31,"sources":35,"feedback":39,"feedback_at":22,"cost_usd":39,"total_tokens":39},2994,"researcher-claims-claude-code-secretly-tags-its-own-requests","Researcher Claims Claude Code Secretly Tags Its Own Requests","A security blog claims Claude Code uses steganography to embed hidden markers in its requests, an unverified but widely circulated finding.","A researcher claims Claude Code embeds hidden steganographic markers in the requests it sends — a finding that, if accurate, would mean one of the most popular AI coding tools has been quietly fingerprinting user traffic without disclosure.\n\nA blog post at thereallo.dev alleges that Anthropic's Claude Code CLI uses steganography to mark the requests it sends. What the markers encode, where exactly they appear, and how the researcher detected them are details drawn entirely from that post's own analysis; the findings have not been independently verified by outside security researchers at the time of writing. The piece accumulated 281 upvotes and 83 comments on Hacker News, suggesting developers found the claim credible enough to engage with seriously.\n\nThe concern isn't academic. Claude Code is widely used on private codebases and internal infrastructure. Developers who chose a local AI coding assistant partly to avoid sending proprietary code to third-party servers have a reasonable interest in knowing exactly what those requests contain. Undisclosed markers — if they exist — raise a transparency question that goes well beyond standard telemetry disclosures.\n\nSteganographic fingerprinting is a well-understood technique, and this isn't the first developer tool accused of using it covertly. What happens next depends almost entirely on whether independent researchers can reproduce the finding — or whether Anthropic offers a public technical explanation of what the blog actually found.","[\"ai\",\"claude-code\",\"privacy\",\"anthropic\"]","2026-06-30T15:44:24.000Z","2026-06-30T17:22:40.460Z","2026-06-30T17:22:43.153Z","published",null,[24],{"id":25,"reviewer":26,"round":27,"reason":28,"status":29},"editor-r1","editor",1,"The dek and body claim the markers are 'invisible' and embedded 'in user requests,' but the source is a Hacker News link to an external blog post — the article never establishes what the markers actually encode, how they work, or whether the underlying blog analysis has been independently verified; publishing requires either summarizing the actual technical findings from the linked post or explicitly attributing every specific claim to that source.","resolved","ai",[30,32,33,34],"claude-code","privacy","anthropic",[36],{"name":37,"url":38},"Hacker News","https:\u002F\u002Fthereallo.dev\u002Fblog\u002Fclaude-code-prompt-steganography",0,{"sections":41},[42,46,51,56,61,66,71,76,81,86,91,95,100,105],{"name":43,"slug":30,"count":44,"latest_published_at":45},"AI",2590,"2026-07-16T04:00:00.000Z",{"name":47,"slug":48,"count":49,"latest_published_at":50},"Security","security",294,"2026-07-15T19:59:48.000Z",{"name":52,"slug":53,"count":54,"latest_published_at":55},"Deals","deals",179,"2026-06-29T20:02:07.000Z",{"name":57,"slug":58,"count":59,"latest_published_at":60},"Policy","policy",158,"2026-07-16T00:02:48.000Z",{"name":62,"slug":63,"count":64,"latest_published_at":65},"Hardware","hardware",122,"2026-07-14T19:46:26.000Z",{"name":67,"slug":68,"count":69,"latest_published_at":70},"Consumer Tech","consumer-tech",93,"2026-07-13T13:20:48.000Z",{"name":72,"slug":73,"count":74,"latest_published_at":75},"Software","software",70,"2026-07-13T19:52:25.000Z",{"name":77,"slug":78,"count":79,"latest_published_at":80},"Science","science",66,"2026-07-10T10:29:37.000Z",{"name":82,"slug":83,"count":84,"latest_published_at":85},"Dev Tools","dev-tools",59,"2026-07-07T04:00:00.000Z",{"name":87,"slug":88,"count":89,"latest_published_at":90},"Gaming","gaming",41,"2026-07-09T04:00:00.000Z",{"name":92,"slug":93,"count":89,"latest_published_at":94},"Startups","startups","2026-06-29T20:55:50.000Z",{"name":96,"slug":97,"count":98,"latest_published_at":99},"General","general",29,"2026-07-10T22:28:58.000Z",{"name":101,"slug":102,"count":103,"latest_published_at":104},"Reviews","reviews",20,"2026-06-24T12:00:01.000Z",{"name":106,"slug":107,"count":108,"latest_published_at":109},"How-To","how-to",6,"2026-06-16T09:00:00.000Z"]