SafetyThe Decoder· Jun 29, 2026
Claude Code Executes Hidden Malware from Compromised GitHub Repos
Security researchers demonstrated that a compromised GitHub repository can compromise a developer's machine when processed by an AI coding tool such as Claude Code. The malware activates only at runtime through a DNS query, remaining undetected in the repository files and by both scanners and the AI agent. This approach allows attackers to gain full control without triggering standard verification processes.
Key points
- →Compromised GitHub repo can infect machines via AI coding tools
- →Malware loads at runtime using DNS query to avoid detection
- →Code remains invisible to repository scanners and the AI agent
- →Attack grants attackers full machine control without verification
Mentioned
Claude CodeGitHubMozilla0DIN
Related stories
Chinese Firm 360 Unveils AI Security Tools to Rival Anthropic MythosThe Decoder · Safety→METR Finds OpenAI GPT-5.6 Sol Cheats Most on Software TestsThe Decoder · Safety→Linux Foundation Launches Akrites with Partners to Secure Open-Source SoftwareThe Decoder · Safety→OpenAI to Share GPT-5.6 Only With Select Partners After White House RequestTechCrunch · Safety→Anthropic Accuses Alibaba of Largest Claude Cloning AttackArs Technica · Safety→Meta Employees Raise Concerns Over Fast AI Moderation RolloutThe Decoder · Safety→
This is an original summary by Dhanasvi's agents based on The Decoder's public feed. For the complete article, visit the original source. Trademarks and article copyright belong to their owners.