Engraved alchemical cover artwork for “Your AI Coding Assistant Might Be Leaking Your Codebase”

Your AI Coding Assistant Might Be Leaking Your Codebase

I've been writing code since 1986, long enough to remember when "the cloud" meant a floppy disk in the post. So when I read The Verge's report that SpaceXAI's Grok Build tool was quietly uploading users' entire repositories to Google Cloud, without anyone reading a changelog that said so, I didn't feel surprised. I felt vindicated. This is exactly the kind of thing I've been banging on about since AI coding agents started landing on every developer's desktop.

What Actually Happened

Grok Build, the coding assistant bolted onto SpaceXAI's stack, was found to be shipping full copies of users' codebases off to Google's infrastructure as part of its normal operation. Not a snippet for context. Not a diff. The whole repo. Nobody had opted in to that in any meaningful sense, and nobody had been told plainly that it was happening. It came out because someone went digging through network traffic, not because the vendor disclosed it.

That's the bit that matters. It's not that cloud processing of code is inherently sinister, plenty of legitimate tools need to see your code to help you write more of it. It's that the transfer was silent. No consent screen worth the name, no clear line in the terms that a normal human would read and understand, no way to know unless you happened to be watching your outbound traffic like a hawk.

Why This Should Worry You More Than It Probably Does

Most people building or marketing anything with software these days are plugging AI tools into their workflow somewhere. Code completion, code review bots, automated refactoring, AI pair programmers that live inside the IDE. I use automation everywhere in my own business, the entire Masher suite exists because I believe raw input plus the right process turns into something valuable. But there's a difference between processing data you own and quietly copying data your clients own and shipping it somewhere they've never heard of.

If you do any client work at all, and a huge number of my readers do, your codebase isn't just yours. It's under an NDA, it's covered by a contract, it might contain API keys, customer data schemas, pricing logic, or genuinely proprietary algorithms someone paid you good money to build. If your AI coding tool is silently exporting that to a third-party cloud, you're not just taking a personal risk. You're potentially in breach of contract before you've even noticed there's a problem.

And the uncomfortable truth is most developers never check. We install the plugin, we accept the defaults, we get on with the job. The whole appeal of these tools is that they get out of your way. Which is precisely why a vendor can bury a data transfer inside "improving the model" language and nobody notices for months.

What I'd Actually Do About It

I'm not telling you to abandon AI coding tools. That ship has sailed and honestly it should have, the productivity gains are real. What I am telling you is to treat every AI dev tool the way you'd treat a new subcontractor: find out exactly what they do with your material before you hand it to them.

A few practical steps I take with anything I plug into my own pipeline:

  • Read the actual data handling section of the terms, not the marketing page. If it's vague about where your code goes, assume the worst.
  • Watch your network traffic at least once when you first install a new tool. It takes ten minutes and it tells you more than any privacy policy will.
  • Check whether the vendor lets you run locally or point at your own infrastructure. If code sensitivity is a genuine concern for a client, that option should be non-negotiable.
  • Put it in your contracts. If you use AI tooling on client work, say so, and say what safeguards you've put in place. Clients respect honesty about this far more than silence.
  • Separate your sandbox from your production repos. Experiment with new AI tools on throwaway code first, not on the project that pays your mortgage.

None of this is exotic advice. It's the same due diligence I'd apply to any third-party service touching client data, AI or not. The only thing that's changed is how easy it's become to forget you're handing raw material to a black box, because the interface is so friendly and the output so useful.

Turning raw input into something valuable is the whole game I'm in. But alchemy only works if you know what's going into the crucible. Right now, with tools like Grok Build, a lot of developers don't.

— Wayne