Providing Feedback & Reporting Issues

Relevant source files

• CHANGELOG.md
• LICENSE.md
• README.md
• demo.gif

Purpose and Scope

This document explains how to provide feedback, report bugs, request features, and get help with Claude Code. It covers the built-in feedback mechanisms (CLI commands), direct GitHub issue filing, security vulnerability reporting, and community support channels.

For information about how reported issues are processed by automated systems, see Issue Triage System and Issue Deduplication System. For details on data collection and analytics, see Event Logging & Analytics.

---

Feedback Channels Overview

Claude Code provides multiple channels for users to report issues and provide feedback, each optimized for different use cases:

Channel	Use Case	Access Method	Response Time
/bug command	Bug reports from within sessions	CLI command	Automated GitHub issue creation
/feedback command	General feedback	CLI command	Asynchronous submission
GitHub Issues	Detailed bug reports, feature requests	Web interface	Community/team triage
HackerOne	Security vulnerabilities	Web submission form	Security team review
Discord	Community support, discussions	Invitation link	Community-driven

Sources: README.md52-58 SECURITY.md1-13

---

Reporting Bugs via /bug Command

Command Overview

The /bug slash command allows users to report issues directly from within a Claude Code session without leaving the terminal. This command captures context about the current session and generates a pre-populated GitHub issue.

Diagram: Bug Reporting Flow via /bug Command

Implementation Details

The /bug command follows the standard slash command pattern in Claude Code's command system. When invoked:

1. Prompts user for bug description
2. Collects diagnostic information from the current session
3. Generates a GitHub issue URL with pre-populated template
4. Opens the URL in the user's browser or provides a copyable link

Known Limitations:

• Very long descriptions can generate invalid URLs (fixed in recent versions)
• Network timeouts may cause submission failures (improved error handling added)

Sources: README.md54 CHANGELOG.md246 CHANGELOG.md460

---

Filing GitHub Issues Directly

When to Use GitHub Issues

Direct GitHub issue filing is recommended for:

• Detailed bug reports with extensive reproduction steps
• Feature requests requiring discussion
• Documentation improvements
• Issues requiring attachments (screenshots, log files)

GitHub Issue Workflow

Diagram: GitHub Issue Processing Pipeline

Automated Issue Management

When an issue is filed on GitHub, several automated workflows process it:

Workflow	File	Purpose	Timing
Issue Triage	claude-issue-triage.yml	Assign labels based on content	On issue creation
Duplicate Detection	claude-dedupe-issues.yml	Identify similar existing issues	On issue creation
Auto-close Duplicates	auto-close-duplicates.ts	Close confirmed duplicates	Daily cron (3 days after marking)
Stale Management	stale-issue-manager.yml	Handle inactive issues	30/60 day thresholds

These workflows use Claude agents to analyze issue content and apply appropriate labels and actions. For detailed information about these systems, see Issue Triage System and Issue Deduplication System.

Sources: README.md54 .github/workflows/claude-issue-triage.yml .github/workflows/claude-dedupe-issues.yml

---

Security Vulnerability Reporting

Security-Specific Process

Important: Security vulnerabilities must NOT be reported through public GitHub issues or Discord. Use the dedicated security reporting channel.

Diagram: Security Vulnerability Reporting Flow

HackerOne Submission

Anthropic's security program is managed through HackerOne:

• Submission Form: https://hackerone.com/anthropic-vdp/reports/new
• Program Guidelines: https://hackerone.com/anthropic-vdp

What Qualifies as a Security Issue:

• Sandbox escape vulnerabilities
• Permission bypass exploits
• Data leakage or unauthorized access
• Code execution vulnerabilities
• Authentication/authorization flaws

Good Faith Reporting: Security researchers should act in good faith and follow responsible disclosure practices. Do not exploit vulnerabilities beyond demonstrating proof of concept.

Sources: SECURITY.md1-13

---

Community Support Channels

Claude Developers Discord

The official Discord community provides:

• Real-time support from community members
• Feature discussions and use case sharing
• Announcements about new releases and features
• Direct interaction with other Claude Code users

Join: https://anthropic.com/discord

Communication Channel Comparison

Diagram: Choosing the Right Feedback Channel

Sources: README.md56-58

---

Feedback Command

Using /feedback

The /feedback command provides a streamlined way to submit general feedback, suggestions, or comments that may not constitute bugs:

Command Usage:

/feedback

Features:

• Interactive prompt for feedback text
• Support for multi-line input (Shift+Enter in some terminals)
• Asynchronous submission to avoid blocking the session
• Network timeout handling for reliability

Recent Improvements:

• Fixed hanging issues when network requests timeout
• Improved URL generation for long feedback text

Sources: CHANGELOG.md246 CHANGELOG.md460 CHANGELOG.md314

---

Session Context and Privacy

What Gets Shared

When submitting feedback or bug reports through CLI commands, certain information is automatically collected to aid in diagnosis:

Information Type	Purpose	User Control
Session ID	Identify specific conversation	Automatic
Model version	Reproduce environment	Automatic
Error messages	Debug failures	Included in logs
Command history	Understand issue context	Not shared by default
File contents	N/A	Never automatically shared

Privacy Controls

Diagram: Data Collection and Privacy Flow

Users can configure the "Help improve Claude" setting to control telemetry collection. Bug reports always include session context regardless of this setting, as it's necessary for diagnosis.

Sensitive Data Protection:

• OAuth tokens, API keys, and passwords are filtered from debug logs
• Limited retention periods for sensitive information
• Restricted access to user session data
• No use of feedback for model training without explicit consent

For comprehensive details, see:

• Commercial Terms of Service
• Privacy Policy

Sources: README.md60-72 CHANGELOG.md390

---

Best Practices for Effective Bug Reports

Information to Include

Minimal Effective Report:

1. Description: Clear summary of the issue
2. Steps to Reproduce: Exact sequence of commands/actions
3. Expected Behavior: What should happen
4. Actual Behavior: What actually happened
5. Environment: OS, installation method, version

Enhanced Report (for complex issues):

• Session ID (available in UI footer)
• Relevant configuration settings (~/.claude.json excerpts)
• Error messages or stack traces
• Screenshots or terminal recordings
• Logs from /doctor command output

Example Bug Report Structure

Sources: CHANGELOG.md81 (example of fixed bug)

---

Analytics and Event Logging

What Gets Logged

Claude Code logs certain events to Statsig for product analytics:

• Issue opened/closed events
• Duplicate detection results
• Feature usage metrics
• Error rates and types

MCP Tool Names: User-specific MCP server configurations are sanitized to prevent exposing tool names in analytics events.

For detailed information about analytics infrastructure, see Event Logging & Analytics.

Sources: CHANGELOG.md370

---

Summary

Quick Reference

Need	Action	Command/Link
Report a bug	Use /bug command	/bug
General feedback	Use /feedback command	/feedback
Detailed issue	File GitHub issue	GitHub Issues
Security vulnerability	Submit to HackerOne	HackerOne
Get help	Join Discord	Discord
Check system health	Run diagnostics	/doctor

Related Documentation

• Issue Triage System - How issues are automatically categorized
• Issue Deduplication System - How duplicate issues are detected
• Event Logging & Analytics - What data is collected and why

Sources: README.md52-72 SECURITY.md1-13