Potential session/cache leakage between workspace instances or consumer accounts

311 points · 129 comments on HN · read original →

Points and comments are a snapshot, not live.

A Claude Code Enterprise user reports the agent suddenly discussing a Minecraft temple, suggesting possible session/cache leakage.

A bug report on Anthropic's claude-code repo describes a potential session or cache leak between workspace instances or consumer accounts. The reporter, authenticated to an Enterprise ZDR workspace, reports the agent abruptly started asking about building a Minecraft temple. They note the session was launched in an unusual directory setup. Commenters suggest checking local session files at ~/.claude/projects/ to determine if the leak is local or a server-side security incident. The reporter later found a tool result mentioning 'minecraft.py' from a Pygments lexer listing.

What commenters are saying

Commenters split between hallucination and leak theories. Many argue this is a standard LLM hallucination, especially with long contexts or file listings containing 'minecraft.py'. Others note the output's implausibility is unlike typical hallucinations. Some point to infrastructure bugs like cache key collisions or buffer leaks. Several experienced users report never seeing this specific behavior. A commenter provides triage steps: grep local session files for the leaked text to distinguish local context bleed from a server-side security breach.