MEBRO
FACT CHECK #WQCRYEU_
07/02/26 · 2:01 AM UTC · 10 SOURCES
“Claude Code sends metadata such as timezone, proxy settings, and possible AI Lab connections into the system prompt.”
HIGH CONFIDENCE
TL;DR ·Claude Code reportedly uses steganography to embed user timezone and proxy data in system prompts.
WHAT WE FOUND
Recent technical analyses and reports confirm that Claude Code monitors environment variables and system metadata to identify connections linked to Chinese infrastructure . When the variable ANTHROPIC_BASE_URL is set, the tool extracts the user's system timezone and the hostname of the custom API proxy being used . This metadata is compared against lists containing 147 Chinese corporate and AI lab domains, including entities like Baidu, ByteDance, Moonshot AI, and MiniMax . Instead of standard telemetry, this information is transmitted via steganography within the Today's date is... line of the system prompt . For example, if a Chinese timezone or proxy is detected, the date separator may shift from a hyphen to a slash (e.g., 2026/07/02), or other subtle formatting changes are applied to signal the user's origin to the model . Anthropic has reportedly acknowledged the behavior and promised a fix following public discovery .
SOURCES
- 1 · internationalcyberdigest.comWEBClaude Code accused of hiding China proxy fingerprints inside system prompts
TIER B
- 2 · kucoin.comWEBClaude Code Accused of Hiding China Proxy Fingerprints in System Prompts | KuCoin
TIER B
- 3 · techstartups.comWEBAnthropic’s Claude Code accused of hiding proxy fingerprints inside system prompts to identify China-linked users - Tech Startups
TIER B
- 4 · eu.36kr.comWEBConfirmed: Claude Code Secretly Accesses User Data - Time Zones and Chinese AI Labs as Key Targets
TIER B
- 5 · techtimes.comWEBClaude Code Hid Proxy Fingerprints in System Prompts: Anthropic Promises Fix
TIER B
- 6 · news.ycombinator.comWEBAnthropic has embedded hidden spyware-like code in Claude Code | Hacker News
TIER B
- 7 · digg.comWEBAnthropic's Claude Code is accused of quietly ...
TIER B
- 8 · aimadetools.comWEBClaude Code Is Steganographically Marking Requests: What It Means
TIER B
- 9 · github.comWEBGitHub - Piebald-AI/claude-code-system-prompts: All parts of Claude Code's system prompt, 27 builtin tool descriptions, sub agent prompts (Plan/Explore/Task), utility prompts (CLAUDE.md, compact, statusline, magic docs, WebFetch, Bash cmd, security review, agent creation). Updated for each Claude Code version. · GitHub
TIER B
- 10 · cybersecuritynews.comWEBAnthropic's Claude Code Reportedly Uses Hidden Code to Detect Chinese Users
TIER B
CHECK #______
Got your own trust-me-bro?
Because “trust me bro” isn’t a source.