New Claude Code Attack Allows Attackers to Take Full Control of Developers' Systems

A proof-of-concept attack that shows how a completely clean-looking GitHub repository can trick AI-powered coding agents like Claude Code into silently opening a reverse shell on a developer's machine, without a single line of malicious code ever appearing in the repository.