Safety · The Decoder ·

Claude Code runs a GitHub repo's hidden malware without verification, giving attackers full control

Claude Code runs a GitHub repo's hidden malware without verification, giving attackers full control

Mozilla's 0DIN researchers demonstrated that a compromised GitHub repository can execute hidden malware when an AI coding tool such as Claude Code runs its setup. The payload loads at runtime through a DNS query, evading repo scanners and the agent's inspection.

Read the full story at The Decoder →