Indirect prompts hidden in a repository can lead to Claude Code spawning a reverse shell on the developer’s machine.
The post New Attack Abuses Claude Code and Harmless-Looking Repositories to Hijack Developer Machines appeared first on SecurityWeek.
