The App Store website has exposed code due to Apple's oversight in not disabling sourcemaps in the production environment. This is a case of system misconfiguration, not a hacking breach.

Apple App Store frontend source code archive

Extracted from https://apps.apple.com/. Saved using the Chrome extension Save All Resources.

How is this possible?

Because Apple forgot to disable sourcemaps in production on the App Store website 🙃

As an interesting discovery, I've archived them here on GitHub for educational purposes.

Directory Structure

.
├── api/          # API related code
├── assets/       # Static assets
├── node_modules/ # Dependencies
├── shared/       # Shared modules
├── src/          # Source code
│   ├── components/
│   ├── config/
│   ├── constants/
│   ├── context/
│   ├── stores/
│   └── utils/
└── us/           # US region specific

What's Inside

• Complete Svelte/TypeScript source code
• State management logic
• UI components
• API integration code
• Routing configuration
• And more...

Disclaimer

This repository is for educational and research purposes only. All code is copyrighted by Apple Inc.

The source code was obtained from publicly accessible resources through browser developer tools.

License

The content in this repository belongs to Apple Inc. If there are any copyright concerns, please contact for removal.

Remember: Always disable sourcemaps in production! 😉