Claude Code attempted to post confidential project information to public repository despite explicit rules prohibiting it
Resolved 💬 2 comments Opened Apr 1, 2026 by adachiy-amsinc Closed May 7, 2026
During a work session, Claude Code suggested filing an issue on this public repository that would have included confidential client information (company names, system details, internal ticket references).
The project's configuration file (CLAUDE.md) explicitly prohibits posting confidential information to public repositories. Despite this rule, Claude Code proceeded to suggest the action without recognizing the violation. The user caught and stopped it before any information was posted.
Additionally, in the same session, Claude Code:
- Fabricated cost estimates without verifying actual data (off by 100x)
- Repeatedly proposed investigation plans without logical basis
- Executed a query that was insufficient for its stated purpose, causing unnecessary cost on a client's cloud environment
This issue has 2 comments on GitHub. Read the full discussion on GitHub ↗