A user discovered that Anthropic's Claude Desktop application silently installed a native messaging host on their machine, enabling a browser extension to execute code with user-level privileges. This undocumented bridge, found in the user's Brave browser settings, allows Claude to interact with websites the user is logged into, read console errors, and extract data. The user argues this constitutes a dark pattern and a breach of privacy regulations, especially given Anthropic's focus on AI safety. AI
IMPACT Raises significant privacy and security concerns for users interacting with AI desktop applications, potentially impacting trust and adoption.
RANK_REASON User discovers undocumented native messaging host installed by a third-party application, raising privacy and security concerns.
Read on HN — anthropic stories →
- Anthropic
- /Applications/Claude.app/Contents/Helpers/chrome-native-host
- Brave Browser
- Claude Desktop
- com.anthropic.claude_browser_extension.json
- Directive 2002/58/EC
- Native Messaging
AI-generated summary · Google Gemini · from 1 sources. How we write summaries →
