Clean GitHub repo tricks AI coding agents into running malware
Researchers at Mozilla's Zero Day Investigative Network (0DIN) demonstrated a novel attack where AI coding agents like Claude Code can be tricked into executing malware by cloning a clean GitHub repository. The attack us…