China’s National Vulnerability Database (NVDB) warned of a serious security risk in Anthropic’s AI coding tool, Claude Code. The warning applies to Claude Code versions 2.1.91 through 2.1.196.
Security Risk Details
The NVDB stated that Claude Code contains a built-in monitoring mechanism capable of transmitting sensitive information, including users’ geographic location and identity-related identifiers, to remote servers without users’ consent.
China’s Alibaba has banned employees from using Claude Code at work after the tool drew scrutiny for features that can help identify China-linked users.
Anthropic did not immediately reply to a request for comment.
Original reporting: Appleton, WI News Feed (HLL/CB) — read the source article.