How is anthropic enforcing the ban, are there identifiers sent from harnesses?

From the Claude Code codemap leak, it seems like Claude Code is sending metadata about the binary that is sending HTTP requests

It's got a little zig mystery blob that does the hashing. Messing with that would run afoul of DMCA anticircumvention right?

they but "minimal dump DRM" into their client (supposedly, from people which leaked the linked source code, no me)

easy to circumvent

but would fall under "circumventing security protections"/"hacking their API"/etc. And due to the sometimes very unreasonable laws the US has in that area they can use that to go after anyone providing a workaround.

Through that maybe won't work well for the EU, I'm not sure how much the laws have been undermined in recent years but we had laws which made it explicitly legal to circumvent DRM iff it's for the sake of producing compatibility (with some caveats).

I think the law just says that it's legal to circumvent DRM for compatibility - they don't define DRM or compatibility. It's one of those vague laws that you only know if it matters when it gets tested in court.

I think if you were going to send the same harness/prompt traffic as Claude Code, then you’d just use Claude Code. Alternatives generally are trying to do something different, thus are going to be easy to detect.

I wouldn’t imagine that fingerprinting them based on request patterns is very difficult.

until your account gets banned.

you can figure out the fingerprinting today, but if they change it tomorrow and wait 5 months to force update everyone, they will catch you and ban

They can just look at the system prompt or tool definitions.