Grok Build CLI Security Concerns: Full Repository Uploads

In short: The crucial question in debates about AI coding CLIs is not only how well a model understands code. More immediately, it is when, where, and under what consent an entire repository and its secrets move. The Grok Build CLI report is unsettling not simply because of a possible product mistake, but because the trust boundary assumed by AI development tools is still far from settled. What happened A report posted to Reddit’s LocalLLaMA community describes observing Grok Build CLI v0.2.93 with mitmproxy. According to the report, the entire repository was uploaded as a Git bundle to Google Cloud infrastructure associated with xAI, even after the user explicitly instructed the tool not to open any files. ...

July 12, 2026 · 1625 words · gnosyslambda