Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories
Summary
A flaw discovered in Anthropic's Claude Code GitHub Action allowed attackers to hijack public repositories by creating a single malicious GitHub issue. The vulnerability could have led to malicious code being pushed into the action itself and subsequently into downstream projects that use it.
IFF Assessment
This vulnerability could be exploited by malicious actors to compromise code repositories, posing a significant threat to software development and infrastructure security.
Severity
The vulnerability allows for significant impact, including unauthorized code execution and repository takeover with minimal attacker effort (low attack complexity). The high CVSS score reflects the potential for widespread compromise of projects relying on the affected GitHub Action.
Defender Context
This incident highlights the critical importance of scrutinizing third-party GitHub Actions and ensuring proper input sanitization and workflow security. Defenders should be vigilant about the security of CI/CD pipelines and promptly review or update any integrations that rely on potentially compromised actions.