Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Prompt injection is the technique of smuggling instructions to an AI agent through content the agent reads — a document, a calendar invite, a web page, a code comment — so that hostile text carries ...