SecurityWeek

Researchers Demo New Claude Code Attack Using Harmless-Looking Repositories to Hijack Developer Machines

Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
GitHub

Rhai - Embedded Scripting for Rust

As of this version, stdweb is no longer supported for WASM builds because of changes to getrandom starting from version 0.3.

Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...
Bitcoin Magazine

Matt Corallo Urges Bitcoin Projects to Exit GitHub After Rust Lightning Ban

Rust Lightning heads to self-hosted git.rust-bitcoin.org as GitHub's slowdowns, bans, and LLM spam erode trust.
The Hacker News

New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis

SentinelOne details Gaslight, a Rust-based macOS implant linked to North Korea-aligned actors that uses prompt injection to ...