Flaws in Anthropic’s Claude Code could allow remote code execution and theft of API keys when users open untrusted repositories. Check Point Research team found multiple vulnerabilities in Anthropic’s Claude Code AI coding assistant that could lead to remote code execution and API key theft. The vulnerabilities abuse features such as Hooks, MCP servers, and […]
First seen on securityaffairs.com
Jump to article: securityaffairs.com/188508/security/untrusted-repositories-turn-claude-code-into-an-attack-vector.html
