Tag: repository hijacking

1 article

Laptop screen displays GitHub repository page with cityscape background, hinting at public online platform vulnerability.

Flaw in Claude Code GitHub Action Exposes Repositories to Hijacking

A security researcher discovered a logic hole in Anthropic's Claude Code GitHub Action that could let attackers hijack vulnerable public repositories with just a single opened GitHub issue. This flaw exploited broad read and write permissions, putting countless repositories at risk.

Analyst 207