A single GitHub issue could have hijacked Anthropic’s own Claude Code action and poisoned every project that uses it
04-06-2026 18:44 via thenextweb.com

A single GitHub issue could have hijacked Anthropic’s own Claude Code action and poisoned every project that uses it

The attack starts with a GitHub issue. Not a sophisticated one. Just an issue opened by a bot account with a carefully worded body that looks like an error message. When Claude Code’s GitHub Action picks it up for triage, it follows the instructions hidden inside, reads the process’s environment variables, and writes them back […]
This story continues at The Next Web
Read more »

Web design news



Canada unveils $2.3bn AI strategy as Carney takes cues from Pope Leo on safety
Canada unveils $2.3bn AI strategy as Carney takes cues from Pope Leo on safety
Publishing professionals are becoming prime targets for impersonation
Publishing professionals are becoming prime targets for impersonation
Meta launches an AI assistant that tells Facebook creators why their content works, not just that it did
Meta launches an AI assistant that tells Facebook creators why their content works, not just that it did
Databricks CEO calls 2026 “a terrible year to go public” as SpaceX, Anthropic, and OpenAI prepare to absorb $200 billion in IPO capital
Databricks CEO calls 2026 “a terrible year to go public” as SpaceX, Anthropic, and OpenAI prepare to absorb $200 billion in IPO capital
Meta will let employees stop being tracked, for 30 minutes at a time
Meta will let employees stop being tracked, for 30 minutes at a time
A mile-long nuclear-powered ship for 80,000 people has been “about to break ground” for three decades
A mile-long nuclear-powered ship for 80,000 people has been “about to break ground” for three decades
Ramp hits $44 billion valuation in $750 million raise as it bets that AI token spending is the next corporate expense to tame
Ramp hits $44 billion valuation in $750 million raise as it bets that AI token spending is the next corporate expense to tame
UK forces Google to let publishers opt out of AI search results without losing their ranking
UK forces Google to let publishers opt out of AI search results without losing their ranking
Revolut’s co-founder and first employee steps down as CTO ahead of the company’s march toward a $200 billion IPO
Revolut’s co-founder and first employee steps down as CTO ahead of the company’s march toward a $200 billion IPO
Microsoft’s AI chief says the company wants to “eliminate” what it pays Anthropic
Microsoft’s AI chief says the company wants to “eliminate” what it pays Anthropic
EU lawmakers voted to shield colleagues from Belgium’s Huawei corruption probe
EU lawmakers voted to shield colleagues from Belgium’s Huawei corruption probe
Ex-DeepMind duo raise $20 million to close the gap between what sales teams know and what they actually do
Ex-DeepMind duo raise $20 million to close the gap between what sales teams know and what they actually do
Europe wants to make sure no one has a kill switch over its technology
Europe wants to make sure no one has a kill switch over its technology
Inside the mind of a viral indie hacker
Inside the mind of a viral indie hacker
Desktop versie