1/9 The most interesting thing about the Claude Code leak for devtool companies: Anthropic hardcoded 120+ vendor names across 7 different systems in the source. Anthropic explicitly included your tool name in the code (or they didn’t 🤷🏻‍♂️) Thread 👇

6/9 (Secret Scanner) 36 credential patterns across 23 vendor families are blocked from entering team memory. @gitlab, @slackhq, @stripe, @shopify, @openai, @railway, @render, @buildkite GitHub alone has 5 specific rules (PAT, fine-grained PAT, app token, OAuth, refresh token). A safety feature, but missing coverage means no vendor-specific protection.

7/9 (API Gateways) 7 third-party AI gateways are fingerprinted in analytics: @litellm, @helicone_ai, @portkeyai, @Cloudflare AI Gateway, @kong, @braintrust, @databricks, but no sigin of @langfuse, @OpenRouter, @LangChain's Langsmith. Detected via headers or hostnames. Purely observational… but it means Anthropic *could* see how much Claude Code traffic flows through your proxy.

8/9 (Plugin Tips) @vercel is the only third-party vendor with a proactive plugin install tip. When Claude Code detects vercel.json or the Vercel CLI, it suggests: /plugin install vercel@claude-plugins-official No MCP collapsing, but a different distribution channel: your tool is recommended before the developer even starts.