Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Hosted on MSN
What is SerpApi, and how are developers using it?
Every time you search Google, Bing, or Amazon, you see a clean list of results. But under the surface, those pages contain a ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results