Engineer’s Codex is a publication about real-world software engineering.

Engineers Codex's resource offers insights, tutorials, and resources for software engineers and technology enthusiasts. Readers can learn about coding best practices, software architecture patterns, and emerging technologies. With articles, tutorials, and code samples, Engineers Codex provides  guidance and expertise for building software applications and advancing technical skills.

Engineer’s Codex

On March 31, 2026, Anthropic accidentally shipped a sourcemap file in a Claude Code npm update, exposing 600k lines of source code. Key findings from the leak include: KAIROS, an undisclosed autonomous background agent mode that runs 24/7 without user prompting; anti-distillation mechanisms that inject fake tool definitions to poison competitor training data; DRM implemented below the JavaScript layer in Zig/Bun to prevent API spoofing; a sophisticated 3-layer memory architecture; and 20+ unshipped features including multi-agent orchestration, browser control via Playwright, and cron scheduling. The leak also revealed internal model codenames (Capybara, Numbat, Fennec, Tengu) and an 'undercover mode' that strips internal references in external repos. The incident occurred during a broader wave of AI developer security incidents in March 2026. Practical takeaways for agent builders include the SYSTEM_PROMPT_DYNAMIC_BOUNDARY pattern for cost-efficient prompt caching and self-updating documentation via scoped subagents.

Diving into Claude Code's Source Code Leak

What Engineers Building Agents Should Take Away