Tom's Hardware on MSN
AI coding agents can be tricked into installing malware via 'clean' GitHub repositories
Three levels of indirection, all with seemingly innocuous steps, will catch a bot off-guard.
Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Results that may be inaccessible to you are currently showing.
Hide inaccessible results