Comprehensive Collection of Leaked System Prompts for Claude Fable 5, GPT 5.5, and Gemini 3.5 Surfaces on GitHub
A new GitHub repository titled "system_prompts_leaks" has emerged as a significant resource for the AI community, offering a detailed collection of system prompts extracted from the world's leading artificial intelligence models. Maintained by user asgeirtj, the repository includes internal instructions for high-profile models such as Anthropic’s Claude Fable 5 and Opus 4.8, OpenAI’s ChatGPT 5.5 Thinking and GPT 5.5 Instant, and Google’s Gemini 3.5 Flash and 3.1 Pro. The leak also extends to specialized AI tools including Claude Code, Cursor, GitHub Copilot, and Perplexity. These system prompts provide a rare glimpse into the operational constraints, behavioral guidelines, and safety protocols established by AI developers. The repository is reportedly updated on a regular basis, serving as a central hub for researchers and developers interested in the underlying logic of modern large language models.
Key Takeaways
- A GitHub repository has compiled leaked system prompts from major AI providers including Anthropic, OpenAI, and Google.
- The collection includes prompts for next-generation models like Claude Fable 5, GPT 5.5 Thinking, and Gemini 3.5 Flash.
- The repository also covers AI-integrated development tools such as Cursor, GitHub Copilot, and VS Code.
- The project is maintained by user asgeirtj and is subject to regular updates as new prompts are extracted.
In-Depth Analysis
Comprehensive Model Coverage and Versioning
The "system_prompts_leaks" repository represents one of the most extensive public collections of internal AI instructions to date. It spans across multiple industry leaders, notably featuring Anthropic's latest iterations like Claude Fable 5 and Opus 4.8, alongside specialized versions like Claude Code and Claude Design. The inclusion of these specific versions suggests a deep dive into the evolving architecture of the Claude ecosystem. OpenAI's presence is equally significant, with prompts for ChatGPT 5.5 Thinking and GPT 5.5 Instant being made public. This distinction between "Thinking" and "Instant" models highlights the different operational logic applied to models optimized for reasoning versus those optimized for speed. Google’s ecosystem is also well-represented, featuring Gemini 3.5 Flash, 3.1 Pro, and the previously less-documented "Antigravity" model. This breadth allows for a comparative look at how different organizations structure their model's foundational behavior and how these instructions change across different model tiers.
Specialized Tool Integration and Developer Ecosystems
Beyond general-purpose large language models (LLMs), the leak extends significantly into the realm of AI-powered productivity and coding tools. System prompts for Cursor, GitHub Copilot, VS Code, and Perplexity are included in the repository. These prompts are critical because they define how AI interacts with complex environments like codebases, real-time search results, and integrated development environment (IDE) interfaces. By examining these instructions, developers can gain insights into the specific constraints and "personalities" assigned to these tools to ensure they remain helpful and safe within their respective environments. For instance, the prompts for VS Code and Copilot likely contain specific instructions on how to handle code suggestions and maintain context over long files, while Perplexity’s prompts would focus on the synthesis of search data and citation accuracy.
The Role of Continuous Updates in Prompt Extraction
A notable aspect of this repository is its commitment to regular updates. As AI companies frequently update their models and the system prompts that guide them, a static leak would quickly become obsolete. The maintainer, asgeirtj, indicates that the repository is updated periodically to reflect the current state of these models. This ongoing effort suggests a persistent community interest in "prompt leaking" or extraction techniques. It also indicates that despite the efforts of companies like OpenAI, Anthropic, and Google to secure their internal instructions, these prompts remain accessible to those using advanced extraction methods. This continuous cycle of updates makes the repository a living document of the current state of AI steering and alignment.
Industry Impact
The public availability of these system prompts has significant implications for the AI industry. For researchers, it provides a transparent window into the safety guardrails and operational logic that companies use to steer model behavior. This can lead to better academic understanding of AI alignment and safety. However, for the companies involved, such leaks highlight the ongoing challenge of prompt security. If internal instructions are easily extracted, it may lead to more sophisticated "prompt injection" attacks where users attempt to bypass the very guardrails revealed in these leaks. Furthermore, this repository may force AI developers to rethink how they protect internal instructions, potentially leading to a shift toward more transparent, open-source-style documentation of model guidelines, or conversely, more robust technical measures to prevent extraction. The leak also levels the playing field for smaller developers who can now study the prompt engineering techniques used by industry giants to improve their own AI implementations.
Frequently Asked Questions
Question: What are system prompts and why are they important?
System prompts are the foundational instructions provided to an AI model by its developers before a user interaction begins. They define the model's role, limitations, tone, and safety guidelines. They are important because they act as the "constitution" for the AI, steering its behavior and ensuring it stays within defined operational boundaries.
Question: Which specific models are included in the system_prompts_leaks repository?
The repository includes prompts from a wide range of models, including Anthropic's Claude Fable 5 and Opus 4.8, OpenAI's ChatGPT 5.5 Thinking and GPT 5.5 Instant, Google's Gemini 3.5 Flash and 3.1 Pro, xAI's Grok, and specialized tools like Cursor, GitHub Copilot, and Perplexity.
Question: Is the extraction of these prompts authorized by the AI companies?
No, these prompts are typically extracted through various techniques without the explicit authorization of the developers. They are considered internal configurations, and their public release on platforms like GitHub is usually the result of independent research or prompt extraction efforts by the community.

