Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Mozilla researchers revealed a new attack that tricks Claude Code into running hidden commands from seemingly harmless GitHub repositories.
initial, doing: entry/ write unit test do/ write code exit/ ..., # smcat recognizes initial # and final states by name # and renders them appropriately final; initial => "on backlog" : item adds most ...
Exceptions can be rendered into a beautiful HTML exception page! Now when doing API requests accepting application/json a JSON debug error page will be returned. When ...