Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...
* Gtk+-3.0 >= 3.22 * Gtk+-2.0 >= 2.24.30 * gtk2-engines-pixbuf >= 2.24.30 * gtk2-engines-murrine >= 0.98.1 ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results