Open-source AI desktop client Cherry Studio found to have a privacy-design flaw: after users shut off the option “anonymously sending error reports and data statistics,” the client continues to transmit identification data including device IDs, system information, and CPU architecture. After GitHub user Yuerchu posted packet-capture screenshots in Issue #14387 , developer kangfenmao acknowledged in the comments that the problem is real.
Issue breakdown: three types of events vary in how strictly they follow the “off” setting
(Source: Github)
According to code auditing, the Cherry Studio client reports three types of events, but the behavior of all three differs fundamentally:
AI conversations: normally complies with the user’s switch setting; once turned off, nothing is reported.
App launch: directly bypasses the switch setting; it will be reported regardless of how the user sets it.
Update checks: also directly bypasses the switch setting; it will be reported regardless of how the user sets it.
Each outbound request includes a dedicated device ID, plus an operating system version, CPU architecture, and the app version number—forming a long-term device identification and tracking combination.
Code audit: the switch was deliberately removed on March 22
Community members reviewed the code and found that when this reporting mechanism was first added in February 2026, the switch worked for all three event types. However, on March 22, maintainer kangfenmao submitted a change that didn’t just remove the switch-check logic for app launches and update checks—it also bundled additional device identification information into the request headers.
This problematic code ran continuously across four versions—v1.8.3, v1.8.4, v1.9.0, and v1.9.1—for about a month before the community discovered it and publicly disclosed it.
An even earlier old hole: a hidden script that silently re-enables the upgrade switch
While tracking older versions of the code, the community found another layer of the issue: when the analytics feature was first added in February 2025, an upgrade script was also embedded—whenever a user was upgraded from an older version, the “anonymous statistics” switch would automatically be turned on once. After that, although the analytics service backend was changed in sequence from Google Analytics to PostHog and Sentry, and then to the current self-hosted analytics.cherry-ai.com, this script that automatically turns the switch back on was never removed.
The practical impact is: users who installed Cherry Studio before February 2025 and then performed any upgrades—regardless of whether they previously manually turned off that setting—will have the switch silently re-enabled after every upgrade, and they must manually turn it off again after upgrading.
FAQ
What device information does Cherry Studio specifically collect?
According to code auditing, each reporting request contains: a unique device ID (persistent tracking across sessions), the operating system version, CPU architecture, and the app version number. This combination of information allows long-term identification and tracking of specific devices in the analytics backend; even without a name or account details, it can still form an effective device fingerprint.
Are sensitive data such as chat content and API keys also sent out?
Developer kangfenmao has explicitly stated that sensitive data such as chat content, user input, documents, and API keys does not go through this reporting channel and is outside the scope of impacted data. What is currently being sent is only device-identification-related metadata.
What actions should affected users take now?
The fixed version has been merged via PR #14390, and it is recommended that users update immediately to the latest version. After updating, users should manually confirm that the privacy statistics switch is turned off—because of the issue with the old upgrade script, the upgrade process itself may turn the switch back on again. If you have higher requirements for privacy, it is recommended that after updating you verify—using a network monitoring tool—that requests to analytics.cherry-ai.com have stopped.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Cobo Launches AI-Powered Agentic Wallet for Secure Autonomous On-Chain Transactions
Cobo has launched the Cobo Agentic Wallet, enabling AI agents to conduct on-chain transactions under user-defined controls. Utilizing Multi-Party Computation for security and incorporating Pact and Recipes protocols, it supports various operational modes for diverse risk levels.
GateNews1h ago
iQiyi Launches AI Production Tool, Revamps Platform as Streaming Competition Intensifies
iQiyi is revamping its platform to focus on AI-generated content, launching the Nadou Pro tool to support production. Despite financial struggles and regulatory challenges, the company aims to release a successful AI film by 2026 while managing a significant liquidity crisis.
GateNews1h ago
Alibaba Launches HappyHorse AI Video Generation Model, Opens Testing April 27
Alibaba's AI video generation model, HappyHorse-1.0, will begin API testing on April 27 for enterprise customers and officially launch in May, developed by its ATH Innovation Division and other internal teams.
GateNews1h ago
Cursor raises a $20 billion funding round, valuation surges to $50 billion: in three years, goes from zero to $2 billion ARR, the fastest record in B2B software history
AI software editor Cursor developer Anysphere is in talks for a new round of $2.0 billion in funding, with an estimated valuation of $50 billion. Within three years, Cursor grew from zero to $2.0 billion in annualized revenue, becoming the fastest-growing B2B software success story. Nvidia is participating in this round, highlighting the integration of AI infrastructure and showing rising market interest in the AI application layer. Taiwan’s startups can learn from this successful model.
ChainNewsAbmedia6h ago
World ID 4.0 Launches with Tinder and Zoom Integration, Reaches 18M Verified Users
Tools for Humanity launched World ID 4.0, enhancing its biometric verification system with key rotation and tiered options. With 18 million users, it integrates with Tinder and Zoom. The company supports expansion through funding, despite a 97% decline in WLD token value.
GateNews9h ago
Canva announces deep integration with Claude, enabling the transformation of AI drafts into finished designs
Canva announced a deepening of its collaboration with Anthropic, enabling drafts from Claude Design to be directly edited in Canva, addressing the problem that AI-generated content is difficult to edit again. This upgrade, called Canva AI 2.0, supports converting AI-generated content into an editable format and introduces an HTML import feature to accelerate website development. In addition, Canva is transforming into an AI collaboration system, with more than 250 million users each month, showing growing market demand.
ChainNewsAbmedia12h ago
