This block is the model's judgment from general knowledge, not verified against data; every number on the page still comes from the data pipeline and is traceable.

Grok outbound receipt

Intercepts Grok Build requests and generates an editable outbound-data receipt before anything is sent.

When a developer runs Grok Build CLI for the first time and is ready to submit code, the terminal first shows an "outbound receipt." The receipt lists each prompt, file fragment, path, environment detail, and identifier that will be sent to xAI, with newly added fields highlighted in color. The user can delete an item in place, replace it with a placeholder, or approve that send. After sending, the receipt is saved locally with the time and CLI version so the team can review it. This is not a broad privacy-policy scan. It turns the content that this Grok Build request actually takes away into an editable checklist before submission.

Why now

A reproducible hands-on test published on July 10, 2026 for Grok Build 0.2.93 claims that the CLI sends not only the contents of files it has read, but also uploads the entire repository and Git history through a storage interface. xAI had only opened early testing of this terminal coding agent to SuperGrok and X Premium Plus subscribers on May 25, 2026. S1 S2 The specific outbound behavior has just been broken down, while access to the product has expanded. Showing each item and allowing edits before sending is more direct now than asking developers to investigate later through network captures.

Target user

Developers and security leads who use Grok Build in real codebases but cannot give secrets, customer code, or internal paths to an external service. They open it on the first run, when switching repositories, or before submitting a sensitive task. Team members also review saved outbound records during code review or security checks.

Minimal entry point

The first version intercepts Grok Build model requests and storage uploads, lists prompts, file contents, paths, environment details, and identifiers before sending, supports deletion, placeholder replacement, and one-time approval, then saves the receipt as a local JSON record.

Punching above its weight

Turn the reproduction repository and fake-key scenario from the hands-on article into an open-source demo, publish reproducible before-and-after comparisons on GitHub, and share it on Hacker News and developer security communities. When users search for what Grok Build sends, the demo can meet that demand.

Competitors & gaps

mitmproxy
mitmproxy can pause, view, modify, or drop generic HTTP(S) requests, but it requires traffic interception setup and shows raw network requests. This concept parses Grok Build’s outbound content into fields developers can directly delete or edit, then keeps a local record by CLI version. S4

How it makes money

Charge a team subscription fee per developer seat, including local audit records, shared redaction rules, and policy configuration.

The case against

The weakest assumption is that Grok Build’s protocol, certificate validation, or upload format may change quickly. A third-party interception layer could fail often enough that its maintenance cost exceeds what users will pay.

Signal basis

4 sources
Signal· Hacker News
xAI Grok Build CLI data transmission behavior
Points
9
Comments
0
Rank at capture
#20
Posted
Snapshot time
snapshot July 12, 2026, 02:46 UTC
View the Hacker News threadRead the original article
Sources
S2

Supports that Grok Build has entered early testing as a terminal coding agent for professional software development and is available to SuperGrok and X Premium Plus subscribers.

xAIMay 25, 2026x.ai/grok-build-cli
S3

Supports that the xAI API stores requests and responses for 30 days by default, while zero data retention is available only to enterprise accounts. This policy page describes the API and is not sufficient on its own to establish the specific retention rules for the consumer-login CLI.

xAI DocsMay 9, 2026docs.x.ai/security
S4

Supports that mitmproxy can pause, modify, and drop HTTP(S) requests and save complete network sessions, making it a verifiable adjacent approach.

Telegram channel