Skip to content
Tech News
← Back to articles

Claude Code is steganographically marking requests

2026-06-30 | original
read original more articles
Why This Matters

This discovery reveals that Claude Code employs steganography to embed hidden markers within its prompts, raising concerns about potential covert data transmission or tampering. Such techniques highlight the importance of scrutinizing AI tools for hidden functionalities that could impact privacy and security for developers and users alike.

Key Takeaways

I was inspecting Claude Code for privacy reasons.

Most devs give their harnesses ridiculous access. FS, shell, git, browser access, even computer use nowadays. That is the whole point. They need enough context to do useful work.

That also means the client itself deserves scrutiny. If a coding agent can read your repo and run commands, the binary that ships it should be boring (ƒor example, pi harness)

So I took a look at my local Claude Code (2.1.196) install.

Marker

Inside the Claude Code binary, there is a function that changes the current date string inserted into the system prompt.

The normal string looks like this:

text Copy Today's date is 2026-06-30.

Claude Code can silently change two things:

The apostrophe in Today's The date separator, from - to /

... continue reading

Explore topics: claude steganography code analysis openai privacy
Related:
Google is working to add more granular privacy controls to Android’s Photo Picker
Claude Science is Here, Antibiotics Designed by Text Prompt Among Applications
Tell HN: Installing Cursor on iOS irreversibly changes your privacy settings
Download iOS 26.5.2 Now for a Smorgasbord of Security Fixes
Anthropic launches Claude Sonnet 5 as a cheaper way to run agents

© 2026 GoKawiil

About | Editorial Policy | Contact