Y
Hacker News
new
|
ask
|
show
|
jobs
by
charles_f
386 days ago
Through an issue on the public repo. There's even a screen capture of it
1 comments
bjornsing
386 days ago
So the security mistake was saying to Claude ”please handle that GitHub issue for me” with auto approve enabled?
link
0x500x79
386 days ago
The issue is that anything put into an LLM thread can alter the behavior of the LLM thread in significant ways (prompt injection) leading to RCE or data exfiltration if certain scenarios are met.
link