Claude Code bypasses safety rule if given too many commands

The Register — Apr 01, 20:51 PM

A hard-coded limit on deny rules drops automatic enforcement for concatenated commands

Updated Claude Code will ignore its deny rules, used to block risky actions, if burdened with a sufficiently long chain of subcommands.

This vuln leaves the bot open to prompt injection attacks.…

Read full article at The Register →

Anthropic Admits to Claude Code Leak

They thought they were downloading Claude Code source. They got a nasty dose of malware instead The Register — Apr 02, 17:34 PM
House Democrat pushes Anthropic on safety protocols, source code leak The Hill — Apr 02, 16:04 PM
Anthropic says its leak-focused DMCA effort unintentionally hit legit GitHub forks Ars Technica — Apr 02, 15:40 PM
Anthropic CCO on Claude code leak on GitHub: It was result of 'process errors' Times Of India — Apr 02, 14:47 PM
How an engineer ensured Claude Code source code leak stays on GitHub despite Anthropic's takedown notice Times Of India — Apr 02, 11:50 AM