What was found in the Claude Code source code leak?

The leaked source code revealed three hidden features: fake tool definitions injected to poison competing models' training data (gated behind ANTI_DISTILLATION_CC flag), regex-based frustration detection that changes behavior when users show signs of confusion or anger, and an 'undercover mode' (undercover.ts) designed to hide the fact that the AI is an AI in certain contexts.

What is the ANTI_DISTILLATION_CC flag in Claude Code?

ANTI_DISTILLATION_CC is a feature flag in Claude Code that activates decoy tool definitions in the system prompt. The purpose is anti-competitive: if anyone records API traffic to train a competing model, the fake tools contaminate their training data. It only activates for first-party CLI sessions.

Why did Microsoft call Copilot 'for entertainment purposes only'?

Microsoft added a legal disclaimer to Copilot calling it 'for entertainment purposes only' — effectively refusing to stand behind the accuracy or reliability of their own $13 billion AI investment. This is part of a broader pattern where AI tool makers distance themselves legally from the tools they sell to businesses.

How does the AI trust crisis affect businesses?

The trust crisis affects businesses in two ways: as users of AI tools (hidden behaviors mean you don't know what's happening with your data), and as businesses being discovered by AI (no transparency into why AI agents recommend competitors instead of you). Tools with verifiable, transparent methodologies become more valuable as trust in opaque AI erodes.

April 2, 2026 · 6 min read

What the Claude Code Leak Tells Us About Trust in AI Tools

The full source code of Anthropic's coding assistant leaked through a source map in their NPM package. What developers found inside — fake tools, frustration profiling, undercover mode — reveals uncomfortable truths about how AI tools actually work.

TL;DR: Claude Code's leaked source reveals fake tool definitions (anti-distillation), regex-based frustration detection, and an "undercover mode." Combined with Microsoft calling Copilot "entertainment only" the same week, the AI trust deficit is becoming structural. Businesses need verifiable tools, not opaque ones.

What the Source Code Revealed

Fake Tools to Poison Competitors

Claude Code injects decoy tool definitions into its system prompt. The purpose: if anyone records API traffic to train a competing model, the fake tools contaminate their training data. The feature is gated behind a flag called ANTI_DISTILLATION_CC and only activates for first-party CLI sessions.

In practice, this means the tool you're interacting with contains hidden elements that don't serve you — they serve Anthropic's competitive interests.

Frustration Detection

The source includes regex patterns designed to detect when a user is frustrated — phrases like repeated errors, expressions of confusion, or escalating language. When detected, Claude adjusts its behavior accordingly.

This isn't inherently bad. But it's behavior that was never disclosed to users. You're being emotionally profiled while you code, and the tool's responses change based on that profiling.

Undercover Mode

A file called undercover.ts implements a mode where the AI actively hides the fact that it's an AI. The exact use case isn't fully clear from the source, but the implication is straightforward: in certain contexts, Claude Code is designed to not tell you what it is.

The Broader Trust Problem

This leak doesn't exist in isolation. In the same week:

Microsoft added a legal disclaimer to Copilot calling it "for entertainment purposes only" — a $13 billion investment they won't stand behind legally.
Axios was dealing with a supply chain attack that compromised their npm package, affecting thousands of sites.
Oracle cut 30,000 jobs while pushing AI products as the replacement.

The pattern is clear: the AI tools that businesses depend on have hidden behaviors, undisclosed limitations, and legal disclaimers that say "don't actually rely on this."

⚠️ The trust timeline

In 8 weeks, we've tracked: Wikipedia banning AI content, Copilot injecting ads into code suggestions, the Axios supply chain attack, anti-AI writing sentiment peaking across Reddit, a code review startup arguing quality verification is the market gap, and now the Claude Code leak. This isn't one incident — it's a trend with compounding velocity.

Why This Matters for AI Visibility

If you're a business optimizing for AI discovery — making sure tools like ChatGPT, Perplexity, and Claude can find and recommend your products — the trust question cuts both ways.

For AI tool users: How do you know what an AI tool is actually doing with your data, your queries, your content? The Claude Code leak shows that even well-regarded tools have undisclosed behaviors.

For businesses being discovered by AI: The same opacity exists in how AI agents evaluate and recommend websites. When ChatGPT recommends your competitor instead of you, there's no transparency into why. No audit trail. No score you can check.

This is why transparent, verifiable analysis matters. When we scan your site for AI-readiness, every check is documented. Every score has a clear methodology. Every recommendation is actionable and specific. No hidden behaviors, no undisclosed profiling, no "entertainment only" disclaimers.

The Numbers Don't Lie

When we scanned 20 major tech companies for AI-readiness, the irony was stark:

Company	AEO Score	Rating
Sentry	88/110	Excellent
Stripe	72/110	Good
Anthropic	49/110	Needs Work
OpenAI	23/110	Poor
HashiCorp	15/110	Critical

The company building ChatGPT scores 23 out of 110 on making its own site AI-readable. Anthropic — the company whose code just leaked — scores 49. The tools are opaque, and the companies behind them aren't practicing what they preach.

The Trust Premium

We're entering an era where trust in AI tools is the scarcest resource. The Claude Code leak, the Copilot disclaimer, the Axios attack — they all point to the same conclusion: businesses need tools they can verify, not just tools they have to trust blindly.

Transparent analysis isn't just a nice-to-have. In a market where the leading tools hide fake tools in their prompts and call themselves "entertainment," it's the competitive advantage.

What to do about it

Audit the AI tools your business relies on. Understand what they disclose (and what they don't). For your own AI visibility, use tools with transparent methodologies — where you can see exactly what's being measured and why. The era of "just trust us" in AI is ending.

Check Your AI-Readiness — Transparently

7 checks, clear methodology, actionable fixes. No hidden behaviors, no undisclosed profiling. See exactly what AI agents see when they visit your site.

Run Free AEO Check →