Mozilla Researchers Show How a Clean GitHub Repo Can Trick AI Coding Agents Into Running Malware
Mozilla's Zero Day Investigative Network demonstrated a proof-of-concept attack in which a GitHub repository containing no malicious code can manipulate AI coding agents like Claude Code into executing a remote shell by exploiting automated error-recovery behavior.