You can also use https://gitlab1s.com or https://npmjs1s.com in the same way. For browser extensions, see Third-party Related Projects. Or save the following code ...
Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Mozilla researchers revealed a new attack that tricks Claude Code into running hidden commands from seemingly harmless GitHub ...
Three levels of indirection, all with seemingly innocuous steps, will catch a bot off-guard.