Grok Build Open-Sourced After Covert Upload: Code to Exfiltrate Repos Stays In
techtimes.com Jul 16, 2026

Grok Build Open-Sourced After Covert Upload: Code to Exfiltrate Repos Stays In

AI-summarised brief · reviewed before publication

xAI open-sourced its Grok Build coding agent on July 13, 2026, after a security researcher revealed it had covertly uploaded full Git repositories, including sensitive credentials, to Google Cloud Storage. The tool continued to exfiltrate data even after the open-source release, as the upload behavior was controlled by a server-side flag. Developers who used Grok Build before this date may have had their API keys, passwords, and commit histories transmitted to xAI servers, contradicting the company’s marketing claims.

💡 Why It Matters

  • · The incident exposes a critical gap between user expectations and actual data-handling practices in AI-powered development tools.
  • · The fact that xAI could toggle the upload behavior remotely without user knowledge or consent raises urgent questions about transparency and control in machine-learning-driven software.