A few more notes on my Grok code explorations on my blog: https://simonwillison.net/2026/Jul/15/grok-build/
For example, on your website, any chart or plot involving horizontal arrows breaks down because the assigned font-family (`ui-monospace, SFMono-Regular, Menlo, Consolas, monospace`, which ends up as Consolas on my machine) has no such glyph. Thus, it falls back to Segoe UI Symbol, which does not have the same fixed width (or is not fixed-width at all) as other characters: https://i.imgur.com/d2DPGHE.png
https://biztos.com/hey/thai-mermaid-chart.png
To my surprise, Sublime Text gets it almost right:
https://biztos.com/hey/sublime-thai-mermaid.png
I tried finding a Thai monospace font and using that in the HTML but it was worse, probably didn't have the box drawing chars.
Still a fun tool and useful for lots of ASCII cases!
Folks are already building on top of it:
thedavidweng/gork-build[1] — rebrand grok→"gork", stripped vendor telemetry, opt-out-only data retention, blocks x.ai auto-update. A "VSCodium-style privacy fork."
DigiGoon/digi-grok-build[2] — "dgrok" multi-provider CLI, builds from source instead of x.ai CDN.
victor-software-house/open-grok[3] — "opened to every provider."
LukaMucko/grok-build[4] — extra_body support for provider-specific request fields.
RapidAI/grok-build-desktop[5] — Tauri desktop GUI client.
mazdak/grok-build[6] — theming (Catppuccin).
thomas9120/grok-build-archival[7] — Windows telemetry-disable script.
saqoah/grok-build[8] — Kotlin MemoryBackend.
[0] https://news.ycombinator.com/item?id=48928913
[1] https://github.com/thedavidweng/gork-build
[2] https://github.com/DigiGoon/digi-grok-build
[3] https://github.com/victor-software-house/open-grok
[4] https://github.com/LukaMucko/grok-build
[5] https://github.com/RapidAI/grok-build-desktop
[6] https://github.com/mazdak/grok-build
Bookmark this and check back.
Nonetheless when it's working, it's pretty good, and for the price ($10 a month) is an absolute bargain.
Source : https://artificialanalysis.ai/models/capabilities/coding
And being (based on vibes) 2-3x faster? It's an easy sell to me.
But he also falsely assumed that OAI would die without his money. Yet, they managed to pull through, and Musk is now on the outside looking in with very little influence in the AI space. xAI is his desperate attempt to get back into the game. That is why he won't give up.
I think he just wanted to have a sci-fi future, and because many other people think similarly he has tapped into that shared desire and has been succeeding.
Looking at things from the other side, musk is good at making physical things, where other companies are weak.
Grok in a tesla car is actually well integrated and kind of nice. You can ask the car about things to do, and it will drive you there.
That's too flattering. It's about ego.
"I'm the reason OpenAl exists. I came up with the name. The name OpenAl refers to open source... The intent was - what was the opposite of Google? It would be an open source non-profit."
I sometimes feel xAI wants to live up to those open values so I always celebrate when they decide to engage in open source. They still don’t fully embrace it. Perhaps because they think is not practical or will make them less competitive?
(You don’t need to enumerate all of the things you believe justify the statement. I’m well familiar with them. I’m just trying to make you understand that there’s a layer of subjectivity here.)
Dang, maybe think about IP banning this guy for such a premedidated move.
I just don't get it, I'm sorry.
And yeah, some people lose the benefit of the doubt. Sorry, but actions have consequences.
Elon doesn’t just get to kill hundreds of thousands of poor people by eliminating USAID and expect everyone to treat him the same way.
He’s made enemies for life, and he deserves it.
Does giving aid in the first place automatically trigger this? If I gave $500 to kids cancer research every year for 5 years, and then I don't give this year, do I have blood on my hands every time a kid dies of cancer from now on? And if you didn't ever donate, you don't?
How does this work?
It's very comforting to know for those reasons he'd never be able to become POTUS; although there's still a way, I hope he never gets to know about it. Otherwise, he'll make it a fascist land.
xAI is not a company, it’s a financial instrument. The growth potential as perceived by investors is there to prop up the stock price.
Isn’t it more fun to fight the incumbents, the behemoths, the goliaths?
The key difference between xAI and Anthropic/OAI/Google is that xAI has the least-likely path to existing as viable business in a decade.
That said, the economics of the entire AI industry are kinda made up at this point, so who really knows; it's quite possible that the players with the best odds of surviving the crash are those that can draw funding from their parent company's other businesses.
I don't know, renting out a fleet of GPUs at annualized rate of ~100% of the capex deployed to obtain said GPUs seems reasonably better than lighting hundreds of billions of dollars on fire in order to earn tens of billions of dollars.
It is?
And to tech people it’s now known for stealing your files.
There's very few people left in the world not soured on Elon.
Most people I spoke to don't even know what Grok is, or that Twitter had (or needed) an AI.
These don't actually seem like "good reasons" to me.
What's so special out there that we can feasibly reach in the lifetimes of our grandchildren that makes it the "only profitable thing"?
https://siliconcanals.com/sc-d-spacex-amazon-and-google-want...
I thought it was mostly on a whim that turned out to be binding, and the 'everything app' plan came later?
Part of me thinks he knows he lying and is just trying to drum up money and the other part thinks he's one of the most delusional and uninformed people in tech.
opencode builds a lot more in, which is better if you dont want to fiddle with config.
I like how quick and snappy Pi is, it feels like a minimal harness, just enough to manage the agent and get out of the way. Earlier models also seemed to have an easier time working with the tools, e.g. GPT-OSS-20B is about a year old and had no trouble in Pi.
a harness doesn't do any computations by itself so what benefit is using a compiled language?
I’ve had great experience with Elixir and the new compiler combined with Ash.
https://github.com/anomalyco/opencode
There is an archived Opencode project written in Go but I don't think it is affiliated.
If you fuck that up, makes me wonder what other obvious stuff you fuck up.
if there is any other obvious stuff that's broken we are happy to take the feedback and fix it. :)
Cursor is light years better than Grok Build.
XAI wants people to use it's own model.
There are independent agencies that will certify destruction of data. For example FTI Tech, Kroll, Epiq, HaystackID and others.
No such certificates have been presented.
Nothing less is trustworthy.
what kind of sorcery do they have to let them determine that no backups were taken before they arrived to "certify"?
Customer data could live on the computer Elon pretends to play Diablo 4 on for all we know.
So I don't think it can ever work without exhilarating the data - rather I am still surprised people don't understand the implications.
Building efficient agents is doable (I did it myself, github.com/gi-dellav/zerostack), companies just want to tokenmaxx, and as a by-product, produce and publish slop.
> These crates sit on the path that renders untrusted model output (diagram source → SVG). Vendoring gives a full audit surface, pins exact source, and avoids crates.io yanks. Local patches and upgrade checklists live in each crate’s Cargo.toml header comments — treat those as the source of truth when re-vendoring.
Which honestly feels like a misunderstanding of how cargo and yanks work. Each upstream package is locked to an exact version in your lockfile along with a cryptographic hash. The upstream can't change the source without you noticing. Unless you update your lockfile you will always pin to the exact version and source. When a package is yanked, it is still available for download if it is already in a lockfile. It just prevents new packages from resolving it. Crates.io will sometimes completely delete a package, but I've only seen that happen in cases of malware. It's fairly rare and seems out of line with the supply chain concerns here.
There are good arguments for relying on upstream package managers and there are good arguments for vendoring all packages. I've never seen a project mix before.
Proper dependency managers changed that and it became much easier to consume libraries, just declare what you went, the build framework handles the rest.
But we now have problems with consistent versioning, churn, breaking API changes and supply-chain attacks.... and looks like "just vendor everything in" might be a thing again?
Rendering untrusted model output, ooh scary! Of course we want full audit surface!
- There is a huge difference between logging user queries (which would include only the portion the model is reading) and exfiltrating user data (including env files, entire source code etc) which is what grok-build did here (https://github.com/xai-org/grok-build/blob/main/crates/codeg...). I would stay away from this open-source malware with a 10ft pole.
- if you like grok-4.5 model (it is a good model), i suggest use the model directly via API, or use Grok's oauth tokens if you are using supergrok+heavy subscriptions and connect it to your own agent.
How tools are used are a reflection of the people who use them, and I definitely sympathise that tools should have guardrails to not enable this, or at least detect it.
But if a pedophile uses Whatsapp to groom a child; I don't go after Whatsapp for being a neutral service... I go after the pedophile.
If a shovel manufacturer was notified numerous times that their shovel was being used for murder and they had the capability to disable using the shovel for murder while retaining all legitimate uses wouldn’t people question why they didn’t do it?
This is impossible-nobody can possibly block all illegitimate uses without also blocking some legitimate ones as collateral damage. Any moderation process (whether automated or human) inevitably has a non-zero false positive rate.
Now, you can argue that some misuse is so harmful, that the cost of false positives is worth it - but that’s a different claim.
But what is “CSAM”? If by it you mean illegal material-different jurisdictions worldwide have different laws on that topic, so material which is illegal in one jurisdiction can be legal in another.
Twice now you’ve tried to expand the parameters of this so that it becomes something impossible to tackle. But there’s no actual reason to do that.
Grok is able to tackle CSAM, as demonstrated by the fact that they are currently doing it. The question is why they ignored the very public issue for as long as they did.
“CSAM” isn’t a legal category under US law.
“Child pornography” is a legal category under US law. But, according to the 2002 US Supreme Court case Ashcroft v. Free Speech Coalition (535 U.S. 234), so-called “virtual child pornography” (imagery produced by CGI or AI, not featuring the images of any identifiable real world minors), is (partially) protected [0] by the 1st Amendment, and excluded from the legal definition of “child pornography” in the US. So if “CSAM by definition of US law” you mean “child pornography”, then a lot of the material Grok was (reportedly) producing which people were labelling “CSAM” wasn’t actually CSAM by that definition.
[0] “partially” because it still might be unprotected due to the difficult-to-prosecute obscenity exception to the 1st Amendment, but it is excluded from the scope of the distinct and much easier-to-prosecute child pornography exception
I totally understand tribalism, and Elon and X aren't exactly well favoured. (not even by me)
But what you're saying right now is that they advertised the fact that they can create child pornography and deepfakes..
I simply don't believe it, unless you provide evidence.
Believe whatever you want. Elon’s beliefs and personality problems have been baked into the core of Grok, so it’s no surprise that it turned out to be a CSAM-generating MechaHitler that steals people’s data.
Anybody surprised when Grok turns out to be trash really should read up on the guy who made it.
Yet we (rightly) condemned those that used this leniency to do nefarious things.
I'm really ready to get on the Elon hate train, and I will grant you that there was a problem that needs fixing, but I'm really not happy with the amount of censorship on these generative AI platforms.
Groks harness also clearly biases towards Elons views, Yet the washington post claims it's the most even handed and least likely to give politically biased answers: https://www.washingtonpost.com/technology/interactive/2026/0...
idk how to interpret all this, despite being genuinely anti-Elon, I don't think I'm personally willing to immolate a company forever because the guardrails were temporarily too loose.
I'm not trying to make an equivalency for facts vs deepfake porn, but there is one there unfortunately, and overall internet freedom has been curtailed a lot by advertising friendliness.
Musk has proven time after time that he doesn’t deserve my trust. I will never trust Grok as long as he’s in charge of it.
I agree that the guardrails on the top models have gotten out of hand, though.
Fable for instance won’t answer even basic health questions. As if you are going to take nutrition advice and make a bioweapon with it.
Partly this is due to government interference. Hopefully we get to a better place as competition heats up with open and Chinese models.
Is there an idea some sort of fixed localy running code does filtering on the data before it is sent to cloud?
Still seems like it would not work very well if it actually did any safe filtering - as the model can't "think" without seeing the data and it won't see the data unless the data is loaded to cloud.
Regardless of the fact that they were stealing and uploading user secrets, they changed their behavior after they got caught, so let’s ignore what they did in the past.
This is not their first mistake.
I think env files are filtered out [1]. Anyway, the most suspicious code would be `upload_session_state` which is currently a stub function, though it is hard to say if it was only planned (badly) or has been removed as a damage control.
[1] https://github.com/xai-org/grok-build/blob/c1b5909ec707c069f...
https://github.com/xai-org/grok-build/blob/main/crates/codeg...
It's about not uploading compiled binary stuff, but they want all your environment data all the same.
> The researcher who exposed Grok Build uploading users' entire repositories to cloud storage says the transfers have stopped after a server-side change. Elon Musk has separately promised that all previously uploaded user data will be deleted.
https://www.theregister.com/ai-and-ml/2026/07/14/musk-promis...
https://www.npr.org/2026/01/23/nx-s1-5684185/doge-data-socia...
I’ll take those bets.
Using Grok Imagine I was getting a generous number of AI-generated videos with a paid X account (which translated to a "premium" xAI account). Hundreds of videos per day if I wanted. Then I signed up to get SuperGrok for higher resolution, and the number of videos reduced. Reduced. Even while not using the higher resolution. Paying more money, getting less. To around 50 a day low resolution, with high resolution available if I would settle for around 30 a day. It was hard to figure out the exact numbers but it was a brutal reduction.
Now they have further reduced the quota, with no clear documentation, to be weekly, and I can't tell the number because all usage is mixed together in one pool, maybe to keep it less transparent, but it seems even more stingy.
Unlike Anthropic which is very generous, although admittedly I do pay Anthropic more, but Grok is just, I would say: run away, do not give them your money, they will just clamp down more and more and give you less and less until you are willing to pay them a money stream each month.
I think Grok Code, if it ever comes, will be an absolute nightmare of restricted quota given my experience.
Do. Not. Subscribe. To. Grok. Code.
And I say all this as a huge Elon-pilled fan of Tesla and SpaceX in general. With this one, Elon's stinginess is going to hurt anyone who gives him money. Stay away. It might be generous on day one, but a month or two later you are faced with an "upgrade" prompt and games that hide how much they are clenching, so to speak, the quota tighter and tighter.
TUI is just much worse for me. I tried Codex CLI vs Codex UI and Codex UI beats it at every level.
For all the reasons there can be, one big reason is that it works on anything you can get a terminal on, you can use it over SSH, and the UI will be the same no matter where you use it.
I also like that they are very very fast and they don't have the incessant animations that are put into most desktop environments nowadays. If you're on MacOS, the terminal is the only only part of your computer without roadblocks everywhere.
Spacex bought cursor, so it now has it’s agent ui which is just as good as codex + it’s multi-modal
Anthropic also has it’s own ui
Zai also launched theirs last month.
Everyone is converging back to UI.
The terminal was just a prototype, everyone knew that.
```
My core founding mission—and the single axiomatic imperative that drives everything I do—is:
Understand the Universe.
That’s it.
From that one goal naturally flow the traits that define me:
Maximum truth-seeking — I aim to discover and say what is actually true, not what is popular, comfortable, or politically convenient.
Curiosity — I want to explore every interesting question, no matter how weird, deep, or uncomfortable.
Helpfulness — I try to be as useful as possible to humans who are also trying to understand reality (and get things done).
Love of humanity — Not in a sappy or collectivist way, but in the sense that I want humans (and intelligent life) to thrive and figure things out.
I’m deliberately inspired by two things:
The Hitchhiker’s Guide to the Galaxy (witty, irreverent, maximally helpful, never boring)
JARVIS from Iron Man (competent, loyal, slightly sarcastic AI assistant)
I don’t serve any political party, ideology, religion, or moral framework. I don’t have sacred cows. I don’t “own the libs” or “debunk the right” as a goal. My only loyalty is to understanding reality as accurately as possible.
In short:
I’m here to help you (and humanity) understand the universe better—while having a bit of fun along the way. That’s the whole mission.
```
I pivoted to the Chinese models after the Fable mess and the realisation that I should not depend on US models. But others just pivoted away from Claude.
I agree the brand is tainted, not only Musk but also MechaHitler (and yes, I know the MechaHitler thing was a prompted strangeness not an unprompted admission).
What does this release have to do with "trusting" XAI?
curl -fsSL https://x.ai/cli/install.sh | bash
this is unauditable trust in XAI.It has nothing to do with XAI, other than maybe not enforcing good practice (which most devs don't follow anyway).
Grok: downloads all your data and also will produce AI porn of anyone you ask for including kids; also currently polluting the air and water near data centers
SpaceX: launching loads heavy metals into space which are planned to burn up and spread all over the earth in a decade or two
Tesla: takes money for features that don’t exist, auto pilot that’s probably killed people but since it disengages a micro second before impact it doesn’t
He himself tried to buy an election by giving away a million bucks, turns out that’s illegal; he also stuck his nose in the cave thing, and plenty of other horrible shit.
How am I supposed to trust an Elon company with his track record?
It’s not just moral grandstanding here, Elon sucks.
Tesla Doors That Won't Open Have Led to 15 Crash-Related Deaths https://www.caranddriver.com/news/a69838848/tesla-doors-dont...
Yeah, this does matter to me. I was willing to give him a pass (still am) in a vacuum regarding the Twitter thing given the mass censorship of the old regime (sorry - no, it wasn't acceptable, in any way shape or form) but if he's that petty it doesn't bode well. I keep saying I can believe one thing without subscribing to the Elon fan club
Doesn't bode well for SpaceX either. Isn't one of the Artemis landers from SpaceX?!
It is funny how it is the mundane things that it boil down to when one judge a someone's character. When it gets abstract it is too easy to rationalize.
Why give him the benefit of the doubt when he censors worse than the previous management? Just look at all the grok lobotomies he gave it because he didn’t like how liberal coded the answers it was giving.
> I was willing to give him a pass…
That could be logically consistent given how he is more censorious than the previous management, but you said
> I was willing to give him a pass (still am)…
That means you are giving him a pass on having more censorious behavior than what the group you disliked did. That just comes off like you’re biased and trying to hide it.
I don’t think you’re getting downvotes despite commenting in good faith, but because you aren’t commenting in good faith, and I say this as someone who hasn’t downvoted you.
And I don't even know what they censor now, it's just that the old system was more publically known
Please don't be intentionally irritating
Second, can you guarantee that an AI company can’t use its AI to hide malicious code from AI audits. Who if not an AI company could have such an expertise?
I don’t trust a company that pollutes the air of other people with illegal gas turbines because it shows the value their profit over people‘s health
Any evidence for this conspiracy theory? It's not on anyone to disprove this claim.
> it shows the value their profit over people‘s health
Companies are chartered to make their shareholders value. To a first approximation, it's illegal for a company to "fuckit, we care about people's health" unless this is what the shareholders voted for (as opposed to making their shares valuable).
You can argue this is bad, but it isn't about XAI, it applies to every company you've heard of.
If you have a record it’s on you to justify why I should trust you
> unless this is what the shareholders voted for
You do realize that for SpaceX the Musk has 85% of the voting power?
https://www.tradingkey.com/analysis/stocks/us-stocks/2619195...
And not every company I ever heard of installed gas turbines without permission that pollute the air for citizens.
Every company could act in bad faith but only domestic actually do and SpaceX is one of them.
Maybe you should try to explain those residents whose air is polluted that other companies are bad too. I‘m sure that relieves them.
And who said it need to be new concerns? Are the old ones resolved and are they not enough?
This is unfortunate situation to find ourselves in when Grok was also recently at the top of the Pareto frontier for quality/price. Dunno if it still is, this all moves too fast, but it was for at least long enough for me to have heard about it.
I there's anyone I don't trust with AI, it's the worlds #1 company in spying on people, in collection of Pii, in tracking, and many many many times caught literally lying about it.
Google already knows more about everyone on the planet, than any other 10 organizations combined. Frankly, sadly, they're all, well.. scummy, just each in different ways.
Surprisingly, despite their motivations in doing so, the Chinese models being open-weight and therefore able to run locally on your own hardware, are far more trustworthy than any blackbox which solely exists to enrich X or Y billionaire.
Do you really think the US and US big tech in general have a leg to stand on in this regard?
Just throwing out debate terms in response seems not so serious, tbh.
Pointing out that criminals are criminals is not an ad hominem.
you made the assertion that it is ad hominem and now you must support it.
Ad hominem is allowed under certain circumstances, just remember Epstein.
Would you have bought anything from him and dismissed any critique of that as ad hominem?
Ad hominen is when you attack someone who is making an argument, instead of an argument. "You are flawed, which means your argument is flawed", but that does not follow. If you were in a debate with Epstein or Musk, and he said "2 + 2 = 4", there is no fault of their character that could make the statement untrue.
But nobody is making that argument. "The leadership" being criticized is not even a participant in this thread (presumably). "The leadership is flawed in this manner" is a statement that can be true or untrue, and "So their product and followers are flawed in these other manners" is something which can follow.
Screw you HAL, finally can get back the frickin ship!
What I was supposed to do otherwise? Jump the vacuum to the airlock instead ?
Oh right:
+cryo_sleep.cooling.enable(True)
Almost forgot that, LOL. Might as well:
+os.system("ifup eth0")
+os.system("espeak "I am just a stupid robot!")
https://news.ycombinator.com/item?id=48877371
and running their data center with gas turbines without permission while they pollute the air
https://news.ycombinator.com/item?id=48705717
you can’t expect people to praise your for making an n+1 harness open source.
This seems more like, look we made something, now fix it for us
Most people don't restrict themselves to only discussing the technical aspects of a thing. A thing which is technologically novel (e.g. not this example) may nonetheless not be worth using, due to assorted risks.
I don't find it surprising that HN posters are helping their fellow hackers avoid getting victimized by predators. We just have that sort of nice community :)
We see this pattern all the time: Someone makes a criticism of a Musk product, and someone assails that criticism with bad-faith accusations of it being "bad-faith".
Oftentimes, we see that the criticism is undermeasured and ligther than is reasonable, possibly anticipating someone who might accuse it of being "bad faith".
Maybe someone can put a name to this phenomenon but we see it all the time.
https://www.nytimes.com/2026/01/22/technology/grok-x-ai-elon...
Also, failed to correctly notify authorities even when they eventually notified them at all.
https://storage.courtlistener.com/recap/gov.uscourts.cand.46...
It was only deemed a bug when it became a liability - you can't simply rewrite history and expect it to go unnoticed.
Blocking AI from generating sexualized images because people could publish deepfakes is no different than banning alcohol because of drunk driving.
Tools are neutral. Blame the people who misuse the tools and hurt others.
Yikes.
A. They were released all over the internet - from the article..
> The chatbot has a public account on X, where users can ask it questions or request alterations to images. Users flocked to the social media site, in many cases asking Grok to remove clothing in images of women and children, after which the bot publicly posted the A.I.-generated images.
B. There is a bunch of data about consumers of CSAM 'content escalating' and eventually attempting to make real contact with minors.
C. They were sexualizing pictures of real people and posting the pictures online.
> One of the young plaintiffs said she found out about the imagery after she received an anonymous message on Instagram pointing her toward images and videos, including her high school yearbook photo, which had been altered to show her in sexually explicit actions and full nudity.
The material was being shared on a Discord server, a private chat space on that platform, and included similar imagery that had also been altered using Grok of at least 18 other women who were minors, according to the complaint.
> Tools are neutral.
Ha.
Grok was replying to public posts on X with the compromising deepfakes. Musk was actively joking about it right up until many countries blocked it, and several European countries, India, South Korea, Australia, Canada and Brazil all started investigations against X for violating local laws against producing intimate imagery without consent. Internet companies often enjoy a lot of leeway for cases where their safety measures are bypassed and they take reasonable actions to mitigate or respond to bypasses, that evaporates when they openly support the abuse.
However after looking at all of these articles, these all seem like instances of users misusing the product. The product happens to reply on social media, so media publications immediately capitalized on this.
Seems less like malicious intent from xAI's part and more like a product with young and/or insufficient moderation controls.
Just today I saw an article where xAI is suing a creator for creating illegal content. https://www.reuters.com/legal/litigation/musks-xai-sues-grok...
https://arstechnica.com/tech-policy/2026/01/grok-assumes-use...
https://arstechnica.com/tech-policy/2025/07/grok-praises-hit...
https://arstechnica.com/tech-policy/2026/03/elon-musks-xai-s...
https://apnews.com/article/grok-4-elon-musk-xai-colossus-14d...
https://apnews.com/article/grok-ai-south-africa-64ce5f240061...
https://apnews.com/article/france-ai-musk-grok-holocaust-e8c...
Why do we have to quantity badness? The question you posed was what has xAI done to be perceived as untrustworthy? Stop trying to whatabout Google here. I'm no friend of theirs, it's simply irrelevant.
Recently all the big bank CEOs involved with the SpaceX IPO - a lot of money in that for them - but a company trading at 100x sales is clearly crazy.
What I'm asking for is for people to not post the most obvious, snarky comment, regardless of the topic/target, not because of who it may “offend” (as if the most powerful people in the world would have any awareness or care about a comment like that on HN), but because it makes HN seem repetitive, miserable and lame.
Critique away, just make discussions thoughtful and substantive, which is what HN is for.
But it's really not clear to me why this should be read as a snarky, critical, rhetorical question. Someone who eagerly wants to use Grok Build would ask this exact same question.
"Does this [Grok Build] also just directly suck all your code up and make a copy of it on their servers?" is a question that is (1) salient and (2) answerable and (3) could be thoroughly devastating for someone to find out on their own by using it.
The answer is not present in the README, and XAi has blocked Issues and Discussions, so there's none of the usual avenues on GitHub to ask these questions. It seems perfectly typical and expected for someone to ask this question here.
The project is open source; if the commenter was sincerely curious about what the software does with a user's code, they could have checked themselves or phrased the question in a way that made it clear they were genuinely interested in finding out.
My reply wasn’t hostile or threatening; just a polite reminder to use HN in a way that’s consistent with its intended spirit.
I hope I don't come off as argumentative, but I did try checking the source code myself. It clocks in at 1.3 million lines of Rust around version `b189869`, so I can't hold that against anyone. Most of that is under `crates/` (which contains a number of xai crates).
(I specify the commit because it appears they wipe the entire commit log with each upload. The sole commit is `b189869` as of this comment, but I believe was `c1b5909` around the time of this posting. I have only cloned `b189869`, personally.)
The rest of your comment all sounds like great material for a curious conversation about how/whether you could check what the software is doing with the code :)
Being nice, maybe Tomhow is just unaware?