Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Some results have been hidden because they may be inaccessible to you
Show inaccessible resultsSome results have been hidden because they may be inaccessible to you
Show inaccessible results