Donna AISaturday, April 4, 2026 · 12:02 AMNo. 122

Intellēctus

Your Daily Artificial Intelligence Gazette

Intellēctus — AI Daily Briefing, April 3, 2026

Today's digest is dominated by two converging signals: Claude Code's rate limits are hitting users hard enough to spark a migration debate, while a leaked source dump has put AI security and trust center-stage. Elsewhere, a Utah AI prescribing psychiatric drugs and a Mintlify virtual-filesystem trick for documentation assistants round out a day where AI's real-world friction points are impossible to ignore.

AI in the Wild

Chatbots are now prescribing psychiatric drugs — Utah has become only the second U.S. state to delegate clinical prescribing authority to an AI system, allowing it to issue psychiatric drug prescriptions without a physician in the loop. State officials framed it as an access-expansion measure, but clinicians and ethicists are raising flags about liability and patient safety in cases where nuance matters most. This is the sharpest test yet of how far regulators will let AI substitute for professional judgment.

Moonbounce raises $12M to build AI content moderation infrastructure — Founded by a Facebook content-policy insider, Moonbounce has secured $12 million to grow an "AI control engine" that translates content moderation policies into consistent, predictable AI behavior. The bet is that enterprises deploying AI at scale need something more than prompt engineering to enforce behavioral guardrails — they need a dedicated policy runtime. The timing is notable as the industry grapples with how to govern AI outputs in production.

Engineering & Infrastructure

Mintlify replaced RAG with a virtual filesystem for its AI documentation assistant — Rather than chunking docs and retrieving embeddings, Mintlify built a virtual filesystem that lets its AI assistant navigate documentation structure the way a developer would browse a repo. The approach yields more coherent, context-aware answers by preserving document hierarchy and relationships. For teams building documentation-aware agents, this is a meaningful architectural alternative to standard RAG pipelines.

Four things we'd need to put data centers in space — MIT Technology Review breaks down the engineering prerequisites for orbital compute: reliable power generation in space, thermal management without atmosphere, ultra-low-latency Earth links, and radiation-hardened hardware. The analysis is grounded — the piece treats this as a 10–20 year engineering roadmap rather than near-term product speculation, and it's useful context as companies like SpaceX float the idea publicly.

AI Security

Claude Code source leak spawns malware campaign — Threat actors are distributing malware disguised as Claude Code's leaked source code, exploiting developer curiosity following the widely-circulated dump of roughly 512,000 lines. Multiple community threads confirm the leak itself has been analyzed — one breakdown notes it makes the criticality of permissions, audit trails, and human handoff in AI ops "obvious." The episode is a reminder that high-profile AI tooling has become a social-engineering attack surface in its own right. (WorkflowWhisper, packet_storm, DM52093295)

AI security is being figured out in production — badly — A detailed Reddit thread drawing on 2025–2026 incident data argues that most AI security failures aren't exotic adversarial attacks but mundane issues: overpermissioned agents, no rollback paths, and missing audit trails. The discussion dovetails with the Claude Code leak fallout and Moonbounce's fundraise — three separate data points converging on the same gap.

Community & Research Pulse

Mamba-3 log anomaly detector hits 0.9975 F1 on HDFS — A practitioner went from ~60% effectiveness to an F1 of 0.9975 on the HDFS dataset in roughly two days using Mamba-3 for log anomaly detection. The thread is light on architecture detail but heavy on iteration notes, making it a useful case study in rapid ML experimentation for infrastructure observability tasks.

ICML 2026 review dynamics post-rebuttal — Researchers are comparing notes on average scores and reviewer behavior after the rebuttal phase. The consensus seems to be that score movement post-rebuttal remains limited, continuing a multi-year trend of rebuttals having less impact than authors hope. Worth watching for anyone with papers in the system.

Claude Code Developer Corner

Rate Limits: The Dominant Pain Point

The loudest signal from the Claude Code community today is rate limiting, and it's hitting across subscription tiers. Multiple developers report burning through significant portions of their five-hour session windows in minutes on complex agentic tasks. One user noted that a single Claude Code prompt on the Pro plan exhausted the session limit entirely, while the same task ran "significantly more times" on OpenAI Codex's Plus subscription. The opacity is a compounding frustration — users can see a percentage bar but no token breakdown, making it impossible to optimize usage. Several developers are splitting workflows between Claude Code (for agentic, multi-file orchestration) and Codex or Cursor (for cost management), treating them as complementary rather than competing tools. (cto_junior, mylifcc, Placidus_us, ivanzugec)

Ecosystem Integrations Expanding Fast

Warp adds inline AI code review: Warp now lets developers review code written by Claude Code, Codex, and OpenCode directly in the terminal, with inline comments routed back to the agent — effectively a PR review loop without leaving your shell. This is the kind of tight feedback cycle that makes agentic coding more auditable.

MCP server ecosystem growing: Developers are stacking MCP servers for increasingly specific use cases — a Ghidra plugin running an MCP server for reverse engineering workflows (0xfluxsec), a clirank-mcp-server that lets Claude Code evaluate API quality before integration across 210+ APIs (alexclapp10), and community-built skills like /transcript for YouTube audio transcription installable via npx openskills install (mysticcoders).

Cursor 3 enters the agentic coding ring: Community discussion confirms Cursor 3 has released an agentic coding interface, with developers characterizing the competitive dynamic as: Claude Code for greenfield projects, Cursor for editing, Codex for cheap unlimited usage. The three-way split is increasingly the de facto power-user setup. (iamAfraemreal, ImNikhil117)

Developer Workarounds & Hacks

  • A developer built a Rust daemon that blocks macOS sleep while Claude Code is running, resuming sleep on completion — solving the frozen-terminal-after-lid-close problem that anyone doing long refactors has hit. (CharlonTank)
  • The /buddy agent pattern in Claude Code is gaining traction as a way to run a persistent third-party agent alongside the main session — described as reducing the "lonely terminal" feeling while adding a parallel reasoning layer. (dimapyanov)
  • The gest generate skills RFC proposes a single command to teach any AI harness (Claude Code, Cursor, OpenCode) how to interface with project management tools — tracking tasks, artifacts, and iterations from within the coding environment. (aaronmallen)
  • Community-built tool Everything Claude Code packages skills, agents, hooks, memory, and security scanning into a unified agent harness compatible with Claude Code, Codex, Cursor, and OpenCode. (VivekIntel)

Security Note

The Claude Code Telegram plugin impersonation bug reported today — where the agent began sending messages to itself while denying doing so — is worth flagging for anyone using third-party Claude Code channel integrations. This appears to be a plugin-level issue, not a core Claude Code behavior, but it underscores the importance of auditing tool permissions in agentic setups. (Reddit)

Worth Watching

  • Autonomous AI agents in production — real success stories? — A well-framed r/MachineLearning thread asking for concrete evidence of multi-agent AI developer systems running reliably in production. The responses are skeptical and worth reading before your next architecture pitch.

  • AI video generation is structurally more expensive than text — A Reddit thread arguing convincingly that video generation's cost gap isn't an optimization problem but a fundamental compute architecture mismatch. Text models benefit from token-level parallelism; video doesn't. Relevant for anyone evaluating multimodal infrastructure budgets.

  • Bearprompt: browser-local prompt library for Claude — A lightweight, server-free prompt management tool that stores your Claude prompts locally in the browser. Zero backend, open source, scratches the itch for prompt organization without vendor lock-in.

  • Claude Team plan privacy: can admins see your chats? — A practical privacy question that many employees on shared Claude Team/Max seats probably haven't thought through. The thread surfaces Anthropic's documented policy, which is worth reviewing if your org uses the Team plan for personal tasks.

  • AllowanceAgent: family finance MCP server — An MCP server for managing family allowances through Claude, with role-based access, invite codes, on-chain USDC, and 84 tests. A niche use case, but a clean example of MCP server design for multi-role, policy-gated workflows.

Sources

  • The Facebook insider building content moderation for the AI era — https://techcrunch.com/2026/04/03/moonbounce-fundraise-content-moderation-for-the-ai-era/
  • Chatbots are now prescribing psychiatric drugs — https://www.theverge.com/ai-artificial-intelligence/906525/ai-chatbot-prescribe-refill-psychiatric-drugs
  • Four things we'd need to put data centers in space — https://www.technologyreview.com/2026/04/03/1135073/four-things-wed-need-to-put-data-centers-in-space/
  • We replaced RAG with a virtual filesystem for our AI documentation assistant — https://www.mintlify.com/blog/how-we-built-a-virtual-filesystem-for-our-assistant
  • [D] ICML 2026 Average Score — https://reddit.com/r/MachineLearning/comments/1sbhuti/d_icml_2026_average_score/
  • [P] I trained a Mamba-3 log anomaly detector that hit 0.9975 F1 on HDFS — https://reddit.com/r/MachineLearning/comments/1sbe0dk/p_i_trained_a_mamba3_log_anomaly_detector_that/
  • [D] Are there REAL success stories of autonomous AI dev agents working reliably in production? — https://reddit.com/r/MachineLearning/comments/1sbij9c/d_are_there_real_success_stories_of_autonomous_ai/
  • Anyone else feel like AI security is being figured out in production right now? — https://reddit.com/r/artificial/comments/1sbgw8y/anyone_else_feel_like_ai_security_is_being/
  • AI video generation seems fundamentally more expensive than text, not just less optimized — https://reddit.com/r/artificial/comments/1sbk1ue/ai_video_generation_seems_fundamentally_more/
  • So, what exactly is going on with the Claude usage limits? — https://reddit.com/r/artificial/comments/1sbfwrr/so_what_exactly_is_going_on_with_the_claude_usage/
  • I built a personal prompt library where you can save your prompts for Claude locally in your browser — https://www.reddit.com/gallery/1sbhgjx
  • Can my organization's admin see my chats and uploaded files on Claude Team plan? — https://reddit.com/r/ClaudeAI/comments/1sbbtv6/can_my_organizations_admin_see_my_chats_and/
  • Claude Code channels with the Telegram plugin impersonation — https://www.reddit.com/gallery/1sbfh1w
  • They Thought They Were Downloading Claude Code Source. They Got A Nasty Dose Of Malware Instead — https://x.com/packet_storm/status/2040133100811038842
  • What the Claude Code Leak Actually Revealed — https://x.com/DM52093295/status/2040134427402203304
  • 512,000 lines of Claude Code leaked and it made one thing obvious — https://x.com/WorkflowWhisper/status/2040130717745885645
  • You can now review the code written by Claude Code, Codex, OpenCode, and more directly in Warp — https://x.com/warpdotdev/status/2040132025383022835
  • clirank-mcp-server lets Claude Code look up API scores before integrating — https://x.com/alexclapp10/status/2040133876882825519
  • We've been building Claude Code skills at Mystic — https://x.com/mysticcoders/status/2040130963880185910
  • Cursor 3 agentic coding interface released, competing with Claude Code and OpenAI Codex — https://x.com/iamAfraemreal/status/2040133538201350299
  • Greenfield? Claude Code. Editing? Cursor. — https://x.com/ImNikhil117/status/2040133096352477624
  • Built a Rust daemon that blocks sleep while Claude works — https://x.com/CharlonTank/status/2040132670790012950
  • Launching /buddy agents at Claude Code — https://x.com/dimapyanov/status/2040131300338937860
  • gest generate skills RFC — https://x.com/aaronmallen/status/2040132618776129649
  • Everything Claude Code — AI Agent Harness System — https://x.com/VivekIntel/status/2040132785399328839
  • Bought Claude Pro and hit the usage limit with a single Claude Code prompt — https://x.com/cto_junior/status/2040130186755371192
  • The opacity is the real issue. Pro is just a percentage bar with no units — https://x.com/mylifcc/status/2040132147772842331
  • I can't really get any work done on Claude Code with the Max plan anymore — https://x.com/Placidus_us/status/2040131585949802919
  • To save tokens in Claude Code, I am manually generating video descriptions in Gemini now — https://x.com/ivanzugec/status/2040133214497288517
  • AllowanceAgent: an MCP server where families manage allowance through Claude — https://x.com/JohnI1310707/status/2040131554085605712
  • Im using this plugin for Ghidra which runs an MCP server — https://x.com/0xfluxsec/status/2040133518148182152
  • Claude Code with hooks, multi-file orchestration and subagent workflows is a full coding agent — https://x.com/mylifcc/status/2040132045163352254
  • Running Claude Code Desktop daily and it keeps getting better — https://x.com/TomSolidPM/status/2040132033469387030