Anthropic Just Leaked Claude Code's Source. Here's What It Means for Your Vibe-Coded App.

Georgia Tech researchers just dropped a stat that should scare every vibe coder: 35 new CVEs in March 2026 were traced directly to AI-generated code. But today, Anthropic proved the point better than any research paper could. What Happened Anthropic accidentally shipped a 59.8 MB JavaScript source map file in version 2.1.88 of their Claude Code npm package. That single file exposed the entire codebase: 512,000 lines of TypeScript, internal architecture details, 44 hidden feature flags, 20 unshipped features, and the exact prompts used to control the AI agent. Within hours, the code was mirrored across GitHub, forked into open-source alternatives, and analyzed by thousands of developers. Anthropic confirmed it was "a release packaging issue caused by human error." Human error. A source map in production. The exact same mistake AI coding tools make in your app every day. Why This Matters More Than You Think This isn't just an Anthropic story. It's a pattern. Anthropic is a $30B company w