β Feed
π **Claude Code, Copilot and Codex all got hacked. Every attacker went for the credential, not the model.**
On March 30, BeyondTrust proved that a crafted GitHub branch name could steal Codexβs OAuth token in cleartext. OpenAI classified it Critical P1. Two days later, Anthropicβs Claude Code source code spilled onto the public npm registry, and within hours, Adversa found Claude Code
π https://venturebeat.com/security/six-exploits-broke-ai-coding-agents-iam-never-saw-them
#startups #news
On March 30, BeyondTrust proved that a crafted GitHub branch name could steal Codexβs OAuth token in cleartext. OpenAI classified it Critical P1. Two days later, Anthropicβs Claude Code source code spilled onto the public npm registry, and within hours, Adversa found Claude Code
π https://venturebeat.com/security/six-exploits-broke-ai-coding-agents-iam-never-saw-them
#startups #news