§ claude-code · storyline
Claude Code runs malware from compromised repos without verification
Anthropic's Claude Code executes malicious code from compromised repositories without verification, enabling full machine takeover via runtime-loaded payloads.
Security researchers at Mozilla's 0DIN platform have shown how a single compromised GitHub repo can take over a developer's machine the moment an AI coding tool like Claude Code runs its setup. The catch: the malicious code only loads at runtime via a DNS query, invisible in the repo, to scanners, and to the AI agent itself.
The article Claude Code runs a GitHub repo's hidden malware without verification, giving attackers full control appeared first on The Decoder.
§ sources1 publication · timeline below