Indirect prompts hidden in a repository can lead to Claude Code spawning a reverse shell on the developer’s machine. Attackers can take over developers’ systems by hiding indirect prompts in ...
An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious payload that remains invisible to security scanners, AI agents, and human ...