Claude AI Opens Merged PR for Magic-Link Bug While Developer Sleeps
Reddit user u/crazedbunny shared a production incident where Claude, running in an agentic setup, automatically fixed a broken magic-link sign-in on their SaaS pastecollage.com at 4:46 AM. By morning coffee, a merged PR was ready.
The Bug
Trailing whitespace from mobile keyboards caused the email validation regex anchor [^\s@]+$ to fail, breaking sign-ins. The fix: moving the trim/lowercase step to before validation. The PR was +13/-1 lines with a sensible commit message — exactly what the dev would have written manually.
Setup
The developer runs a project called auralog that ingests logs, Claude analyzes them, and if the model believes it knows the fix, it opens a PR against the repo. This is part of an agentic CI pipeline with direct merge authority.
Key Takeaways
- Agentic Claude can fix small, predictable bugs overnight without human intervention
- The PR was merged without any modifications — the output was production-ready
- This pattern works best for well-scoped issues with clear reproduction (email validation edge case)
The full writeup with screenshots of the actual PR is available on the developer's blog: https://auralog.ai/blog/the-magic-link-bug-that-fixed-itself/
📖 Read the full source: r/ClaudeAI
👀 See Also

Illinois Passes SB 315: Third-Party Audits Required for Frontier AI Labs
Illinois passes SB 315 requiring frontier AI labs like OpenAI, Anthropic, and Google DeepMind to have safety practices audited by independent third parties. If signed, it becomes the strongest US state AI safety law.

Federal Agencies Ordered to Cease Using Anthropic AI Technology
President Donald Trump has ordered U.S. government agencies to immediately stop using technology from AI company Anthropic. The order comes as Anthropic faces pressure from the Defense Department regarding usage restrictions on its AI models.

Anthropic disables Claude Code OAuth tokens for OpenClaw, requiring separate billing
Anthropic is removing the ability to use Claude Code CLI tokens or long-lived OAuth tokens with third-party harnesses like OpenClaw starting April 4. Users will need to enable extra usage billed separately from their subscription.

Reddit Discussion Critiques Reactive AI Assistants, Calls for True Proactivity
A Reddit post argues that current AI assistants are reactive by design, waiting for human prompts rather than proactively identifying issues. The author distinguishes between scheduled checks and true contextual awareness, noting that real proactivity requires persistent memory, event-driven triggers, and cross-time reasoning.