So the security mistake was saying to Claude ”please handle that GitHub issue fo... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		bjornsing 6 months ago \| parent \| context \| favorite \| on: GitHub MCP exploited: Accessing private repositori... So the security mistake was saying to Claude ”please handle that GitHub issue for me” with auto approve enabled?

0x500x79 6 months ago [–]

The issue is that anything put into an LLM thread can alter the behavior of the LLM thread in significant ways (prompt injection) leading to RCE or data exfiltration if certain scenarios are met.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact