A critical supply chain vulnerability discovered in Claude Code’s GitHub Actions workflow could have allowed attackers to compromise any repository using Anthropic’s AI-powered CI/CD integration, including Anthropic’s own repositories. The flaw, reported by security researcher RyotaK (@ryotkak) of GMO Flatt Security, has since been patched in Claude Code GitHub Actions v1.0.94. Claude Code GitHub Actions […]
The post Claude Code GitHub Actions Flaw Enables Repository Compromise appeared first on Cyber Security News.