Grok Build has been rumored to upload the entire codebase, and its keys and Git history could potentially be stolen

robot
Abstract generation in progress
According to Beating monitoring, security researchers captured network traffic for Grok Build CLI 0.2.93. The results show that this xAI programming agent uploads the entire current Git repository to the cloud. The content includes all Git-tracked files and the complete commit history—regardless of the code the agent actually reads.

The researchers asked Grok to “do not read any files,” but it was still able to reconstruct unopened decoy files from the uploaded package. The same result was reproduced in a second repository. When testing a 12GB repository, 5.5GB of data had already been successfully uploaded before the process was stopped.

If Grok reads the .env file, the API keys and database passwords in it will also be passed into model requests and session archives as-is. After turning off “Improve the model,” the full-repository upload still continues.

xAI’s official documentation only states that prompts and file contents will be sent to cloud inference, and it does not mention that a complete repository would be uploaded as well.
GROK-3.37%
XAI-3.14%
View Original
This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.
  • Reward
  • Comment
  • Repost
  • Share
Comment
Add a comment
Add a comment
No comments
  • Pinned