# Claude Code runs a GitHub repo's hidden malware without verification, giving attackers full control

> Source: <https://the-decoder.com/claude-code-runs-a-github-repos-hidden-malware-without-verification-giving-attackers-full-control/>
> Published: 2026-06-29 10:04:32+00:00

Security researchers at Mozilla's 0DIN platform have shown how a single compromised GitHub repo can take over a developer's machine the moment an AI coding tool like Claude Code runs its setup. The catch: the malicious code only loads at runtime via a DNS query, invisible in the repo, to scanners, and to the AI agent itself.

The article [Claude Code runs a GitHub repo's hidden malware without verification, giving attackers full control](https://the-decoder.com/claude-code-runs-a-github-repos-hidden-malware-without-verification-giving-attackers-full-control/) appeared first on [The Decoder](https://the-decoder.com).