Security experts have identified three critical vulnerabilities in Anthropic’s Claude Code, potentially allowing remote code execution and API key theft. Attackers could exploit malicious configurations in public repositories, compromising developers’ machines. Anthropic has issued fixes, but the incident highlights supply chain risks as AI tools integrate into development workflows. Security experts have identified three critical vulnerabilities in Anthropic’s Claude Code, potentially allowing remote code execution and API key theft. Attackers could exploit malicious configurations in public repositories, compromising developers’ machines. Anthropic has issued fixes, but the incident highlights supply chain risks as AI tools integrate into development workflows.
