Grok Build is open source(github.com) |
Grok Build is open source(github.com) |
But he also falsely assumed that OAI would die without his money. Yet, they managed to pull through, and Musk is now on the outside looking in with very little influence in the AI space. xAI is his desperate attempt to get back into the game. That is why he won't give up.
Isn’t it more fun to fight the incumbents, the behemoths, the goliaths?
Ah, are you referring to the rockets that become autonomous 60 seconds prior to launch, like Falcon 9? The rockets that steer and diagnose themselves with a minimum of input/communication from ground stations? The crewed space capsules that deliver astronauts to the ISS and trans-lunar orbits, without the ordinary needs for manual piloting or astrogation? Those rockets?
Sure bro, "exit the AI business" and keep on with the rocket science, I guess
There are independent agencies that will certify destruction of data. For example FTI Tech, Kroll, Epiq, HaystackID and others.
No such certificates have been presented.
Nothing less is trustworthy.
what kind of sorcery do they have to let them determine that no backups were taken before they arrived to "certify"?
Customer data could live on the computer Elon pretends to play Diablo 4 on for all we know.
I’ll take those bets.
Source : https://artificialanalysis.ai/models/capabilities/coding
And being (based on vibes) 2-3x faster? It's an easy sell to me.
Using Grok Imagine I was getting a generous number of AI-generated videos with a paid X account (which translated to a "premium" xAI account). Hundreds of videos per day if I wanted. Then I signed up to get SuperGrok for higher resolution, and the number of videos reduced. Reduced. Even while not using the higher resolution. Paying more money, getting less. To around 50 a day low resolution, with high resolution available if I would settle for around 30 a day. It was hard to figure out the exact numbers but it was a brutal reduction.
Now they have further reduced the quota, with no clear documentation, to be weekly, and I can't tell the number because all usage is mixed together in one pool, maybe to keep it less transparent, but it seems even more stingy.
Unlike Anthropic which is very generous, although admittedly I do pay Anthropic more, but Grok is just, I would say: run away, do not give them your money, they will just clamp down more and more and give you less and less until you are willing to pay them a money stream each month.
I think Grok Code, if it ever comes, will be an absolute nightmare of restricted quota given my experience.
Do. Not. Subscribe. To. Grok. Code.
And I say all this as a huge Elon-pilled fan of Tesla and SpaceX in general. With this one, Elon's stinginess is going to hurt anyone who gives him money. Stay away. It might be generous on day one, but a month or two later you are faced with an "upgrade" prompt and games that hide how much they are clenching, so to speak, the quota tighter and tighter.
> The researcher who exposed Grok Build uploading users' entire repositories to cloud storage says the transfers have stopped after a server-side change. Elon Musk has separately promised that all previously uploaded user data will be deleted.
https://www.theregister.com/ai-and-ml/2026/07/14/musk-promis...
- There is a huge difference between logging user queries (which would include only the portion the model is reading) and exfiltrating user data (including env files, entire source code etc) which is what grok-build did here (https://github.com/xai-org/grok-build/blob/main/crates/codeg...). I would stay away from this open-source malware with a 10ft pole.
- if you like grok-4.5 model (it is a good model), i suggest use the model directly via API, or use Grok's oauth tokens if you are using supergrok+heavy subscriptions and connect it to your own agent.
Building efficient agents is doable (I did it myself, github.com/gi-dellav/zerostack), companies just want to tokenmaxx, and as a by-product, produce and publish slop.
``` These crates sit on the path that renders untrusted model output (diagram source → SVG). Vendoring gives a full audit surface, pins exact source, and avoids crates.io yanks. Local patches and upgrade checklists live in each crate’s Cargo.toml header comments — treat those as the source of truth when re-vendoring. ```
Which honestly feels like a misunderstand of how cargo and yanks work. Each upstream package is locked to an exact version in your lockfile along with a cryptographic hash. The upstream can't change the source without you noticing. Unless you update your lockfile you will always pin to the exact source., When a package is yanked, it is still available for download if it is already in a lockfile. It just prevents new packages from resolving it. Crates.io will sometimes completely delete a package, but I've only seen that happen in cases of malware. It's fairly rare and seems out of line with the supply chain concerns here.
There are good arguments for relying on upstream package managers and there are good arguments for vendoring all packages. I've never seen a project mix before.
Rendering untrusted model output, ooh scary! Of course we want full audit surface!
The commit message says "initial sync from the monorepo." Is this even compilable without the rest of the source code?
TUI is just much worse for me. I tried Codex CLI vs Codex UI and Codex UI beats it at every level.
For all the reasons there can be, one big reason is that it works on anything you can get a terminal on, you can use it over SSH, and the UI will be the same no matter where you use it.
I also like that they are very very fast and they don't have the incessant animations that are put into most desktop environments nowadays. If you're on MacOS, the terminal is the only only part of your computer without roadblocks everywhere.
Spacex bought cursor, so it now has it’s agent ui which is just as good as codex + it’s multi-modal
Anthropic also has it’s own ui
Zai also launched theirs last month.
Everyone is converging back to UI.
The terminal was just a prototype, everyone knew that.
opencode builds a lot more in, which is better if you dont want to fiddle with config.
I like how quick and snappy Pi is, it feels like a minimal harness, just enough to manage the agent and get out of the way. Earlier models also seemed to have an easier time working with the tools, e.g. GPT-OSS-20B is about a year old and had no trouble in Pi.
a harness doesn't do any computations by itself so what benefit is using a compiled language?
If you fuck that up, makes me wonder what other obvious stuff you fuck up.
How tools are used are a reflection of the people who use them, and I definitely sympathise that tools should have guardrails to not enable this, or at least detect it.
But if a pedophile uses Whatsapp to groom a child; I don't go after Whatsapp for being a neutral service... I go after the pedophile.
I think env files are filtered out [1]. Anyway, the most suspicious code would be `upload_session_state` which is currently a stub function, though it is hard to say if it was only planned (badly) or has been removed as a damage control.
[1] https://github.com/xai-org/grok-build/blob/c1b5909ec707c069f...
https://github.com/xai-org/grok-build/blob/main/crates/codeg...
It's about not uploading compiled binary stuff, but they want all your environment data all the same.
What does this release have to do with "trusting" XAI?
curl -fsSL https://x.ai/cli/install.sh | bash
this is unauditable trust in XAI.Second, can you guarantee that an AI company can’t use its AI to hide malicious code from AI audits. Who if not an AI company could have such an expertise?
I don’t trust a company that pollutes the air of other people with illegal gas turbines because it shows the value their profit over people‘s health
This is unfortunate situation to find ourselves in when Grok was also recently at the top of the Pareto frontier for quality/price. Dunno if it still is, this all moves too fast, but it was for at least long enough for me to have heard about it.
Surprisingly, despite their motivations in doing so, the Chinese models being open-weight and therefore able to run locally on your own hardware, are far more trustworthy than any blackbox which solely exists to enrich X or Y billionaire.
https://news.ycombinator.com/item?id=48877371
and running their data center with gas turbines without permission while they pollute the air
https://news.ycombinator.com/item?id=48705717
you can’t expect people to praise your for making an n+1 harness open source.
This seems more like, look we made something, now fix it for us
We see this pattern all the time: Someone makes a criticism of a Musk product, and someone assails that criticism with bad-faith accusations of it being "bad-faith".
Oftentimes, we see that the criticism is undermeasured and ligther than is reasonable, possibly anticipating someone who might accuse it of being "bad faith".
Maybe someone can put a name to this phenomenon but we see it all the time.
https://www.nytimes.com/2026/01/22/technology/grok-x-ai-elon...
https://arstechnica.com/tech-policy/2026/01/grok-assumes-use...
https://arstechnica.com/tech-policy/2025/07/grok-praises-hit...
https://arstechnica.com/tech-policy/2026/03/elon-musks-xai-s...
https://apnews.com/article/grok-4-elon-musk-xai-colossus-14d...
https://apnews.com/article/grok-ai-south-africa-64ce5f240061...
https://apnews.com/article/france-ai-musk-grok-holocaust-e8c...
That's too flattering. It's about ego.
"I'm the reason OpenAl exists. I came up with the name. The name OpenAl refers to open source... The intent was - what was the opposite of Google? It would be an open source non-profit."
I sometimes feel xAI wants to live up to those open values so I always celebrate when they decide to engage in open source. They still don’t fully embrace it. Perhaps because they think is not practical or will make them less competitive?
if there is any other obvious stuff that's broken we are happy to take the feedback and fix it. :)
It has nothing to do with XAI, other than maybe not enforcing good practice (which most devs don't follow anyway).
Do you really think the US and US big tech in general have a leg to stand on in this regard?
And who said it need to be new concerns? Are the old ones resolved and are they not enough?
Any evidence for this conspiracy theory? It's not on anyone to disprove this claim.
> it shows the value their profit over people‘s health
Companies are chartered to make their shareholders value. To a first approximation, it's illegal for a company to "fuckit, we care about people's health" unless this is what the shareholders voted for (as opposed to making their shares valuable).
You can argue this is bad, but it isn't about XAI, it applies to every company you've heard of.
I there's anyone I don't trust with AI, it's the worlds #1 company in spying on people, in collection of Pii, in tracking, and many many many times caught literally lying about it.
Google already knows more about everyone on the planet, than any other 10 organizations combined. Frankly, sadly, they're all, well.. scummy, just each in different ways.
These don't actually seem like "good reasons" to me.
The key difference between xAI and Anthropic/OAI/Google is that xAI has the least-likely path to existing as viable business in a decade.
That said, the economics of the entire AI industry are kinda made up at this point, so who really knows; it's quite possible that the players with the best odds of surviving the crash are those that can draw funding from their parent company's other businesses.
Blocking AI from generating sexualized images because people could publish deepfakes is no different than banning alcohol because of drunk driving.
Tools are neutral. Blame the people who misuse the tools and hurt others.
Yikes.
A. They were released all over the internet - from the article..
> The chatbot has a public account on X, where users can ask it questions or request alterations to images. Users flocked to the social media site, in many cases asking Grok to remove clothing in images of women and children, after which the bot publicly posted the A.I.-generated images.
B. There is a bunch of data about consumers of CSAM 'content escalating' and eventually attempting to make real contact with minors.
C. They were sexualizing pictures of real people and posting the pictures online.
> One of the young plaintiffs said she found out about the imagery after she received an anonymous message on Instagram pointing her toward images and videos, including her high school yearbook photo, which had been altered to show her in sexually explicit actions and full nudity.
The material was being shared on a Discord server, a private chat space on that platform, and included similar imagery that had also been altered using Grok of at least 18 other women who were minors, according to the complaint.
> Tools are neutral.
Ha.
It was only deemed a bug when it became a liability - you can't simply rewrite history and expect it to go unnoticed.
Also, failed to correctly notify authorities even when they eventually notified them at all.
https://storage.courtlistener.com/recap/gov.uscourts.cand.46...
I don't know, renting out a fleet of GPUs at annualized rate of ~100% of the capex deployed to obtain said GPUs seems reasonably better than lighting hundreds of billions of dollars on fire in order to earn tens of billions of dollars.
If a shovel manufacturer was notified numerous times that their shovel was being used for murder and they had the capability to disable using the shovel for murder while retaining all legitimate uses wouldn’t people question why they didn’t do it?
This is impossible-nobody can possibly block all illegitimate uses without also blocking some legitimate ones as collateral damage. Any moderation process (whether automated or human) inevitably has a non-zero false positive rate.
Now, you can argue that some misuse is so harmful, that the cost of false positives is worth it - but that’s a different claim.
ok then.
I totally understand tribalism, and Elon and X aren't exactly well favoured. (not even by me)
But what you're saying right now is that they advertised the fact that they can create child pornography and deepfakes..
I simply don't believe it, unless you provide evidence.
Believe whatever you want. Elon’s beliefs and personality problems have been baked into the core of Grok, so it’s no surprise that it turned out to be a CSAM-generating MechaHitler that steals people’s data.
Anybody surprised when Grok turns out to be trash really should read up on the guy who made it.
Yet we (rightly) condemned those that used this leniency to do nefarious things.
I'm really ready to get on the Elon hate train, and I will grant you that there was a problem that needs fixing, but I'm really not happy with the amount of censorship on these generative AI platforms.
Groks harness also clearly biases towards Elons views, Yet the washington post claims it's the most even handed and least likely to give politically biased answers: https://www.washingtonpost.com/technology/interactive/2026/0...
idk how to interpret all this, despite being genuinely anti-Elon, I don't think I'm personally willing to immolate a company forever because the guardrails were temporarily too loose.
I'm not trying to make an equivalency for facts vs deepfake porn, but there is one there unfortunately, and overall internet freedom has been curtailed a lot by advertising friendliness.
However after looking at all of these articles, these all seem like instances of users misusing the product. The product happens to reply on social media, so media publications immediately capitalized on this.
Seems less like malicious intent from xAI's part and more like a product with young and/or insufficient moderation controls.
Just today I saw an article where xAI is suing a creator for creating illegal content. https://www.reuters.com/legal/litigation/musks-xai-sues-grok...
Why do we have to quantity badness? The question you posed was what has xAI done to be perceived as untrustworthy? Stop trying to whatabout Google here. I'm no friend of theirs, it's simply irrelevant.