←back to thread

Malicious versions of Nx and some supporting plugins were published

(github.com)
441 points longcat | 10 comments | 27 Aug 25 01:38 UTC | HN request time: 0.22s | source | bottom
Show context
snovymgodym ◴[27 Aug 25 13:35 UTC] No.45039484[source]
Claude code is by all accounts a revolutionary tool for getting useful work done on a computer.

It's also:

- a NodeJS app

- installed by curling a shell script and piping it into bash

- an LLM that's given free reign to mess with the filesystem, run commands, etc.

So that's what, like 3 big glaring vectors of attack for your system right there?

I would never feel comfortable running it outside of some kind of sandbox, e.g. VM, container, dedicated dev box, etc.

replies(3): >>45039575 #>>45039684 #>>45039901 #
sneak ◴[27 Aug 25 13:52 UTC] No.45039684[source]
None of this is the concerning part. The bad part is that it auto-updates while running without intervention - i.e. it is RCE on your machine for Anthropic by design.
replies(4): >>45039771 #>>45039873 #>>45039918 #>>45039987 #
1. jpalawaga ◴[27 Aug 25 14:03 UTC] No.45039873[source]
So we’re declaring all software with auto-updaters as RCE? That doesn’t seem like a useful distinction.
replies(2): >>45040086 #>>45042600 #
2. skydhash ◴[27 Aug 25 14:18 UTC] No.45040086[source]
That’s pretty much the definition. Auto updating is trusting the developer (Almost always a bad idea).
replies(2): >>45040184 #>>45040385 #
3. ◴[27 Aug 25 14:25 UTC] No.45040184[source]
4. mr_mitm ◴[27 Aug 25 14:40 UTC] No.45040385[source]
Simply running the software means trusting the developer. But even then, do you really read the commits comprising the latest Firefox update? How would I review the updates for my cell phone? I just hit "okay", or simply set up auto updates.
replies(1): >>45040445 #
5. skydhash ◴[27 Aug 25 14:44 UTC] No.45040445{3}[source]
I trust Debian, and I do trust Firefox. I also trust Node, NPM, and Yarn. But I don’t trust the myriad packages in some rando projects. So who I trust got installed by apt. Anyone else is relocated to a VM or some kind of sandbox.
replies(1): >>45043345 #
6. autoexec ◴[27 Aug 25 17:39 UTC] No.45042600[source]
Software that automatically phoned home to check if an update is available used to be considered spyware if there wasn't a prompt at installation asking if you wanted that. The attitude was "Why should some company get my IP address and a timestamp telling them when/how often I'm online and using their software?" Some people thought that was paranoid.

We gave them an inch out of fear ("You'd better update constantly and immediately in case our shitty software has a bug that's made you vulnerable!") and today they've basically decided they can do whatever the fuck they want on our devices while also openly admitting to tracking our IPs and when/how often we use their software along with exactly what we're using it for, the hardware we're using, and countless other metrics.

Honestly, we weren't paranoid enough.

replies(2): >>45045903 #>>45047072 #
7. mr_mitm ◴[27 Aug 25 18:39 UTC] No.45043345{4}[source]
So your issue isn't related to auto updates at all, not even "almost always"
replies(1): >>45043429 #
8. skydhash ◴[27 Aug 25 18:46 UTC] No.45043429{5}[source]
Apt doesn't autoupdate.
9. marshray ◴[27 Aug 25 22:04 UTC] No.45045903[source]
From the perspective of the software vendor, it may be a semi-regular occurrence that they learn that users are being actively harmed by a software vulnerability exploited in-the-wild. So that's an argument that developers have a moral obligation to maintain the ability to push updates their users without delay.

Waiting for the user to click "Check for updates..." is effectively pushing this responsibility onto the users, the vast majority of whom lack the information and expertise needed to make an informed choice about the risk.

10. CGamesPlay ◴[28 Aug 25 00:54 UTC] No.45047072[source]
We're talking about Claude Code, the frontend to the online, hosted LLM inference suite, right? The auto-updater isn't where they get their usage metrics.