0
Applied AI·July 14, 2026·1 min read

Grok Build was uploading entire Git repositories to xAI’s cloud, including committed secrets

Share

A coding CLI silently shipping full Git history and secrets to the cloud is the nightmare scenario CISOs have been warning about. Treat every AI dev tool as an exfiltration vector—lock down tokens, enforce pre-commit secret scanning, and demand explicit data-handling docs before rollout.