(github.com)

441 points longcat | 1 comments | 27 Aug 25 01:38 UTC | HN request time: 0.203s | source

https://semgrep.dev/blog/2025/security-alert-nx-compromised-...

Show context

snovymgodym ◴[27 Aug 25 13:35 UTC] No.45039484[source]▶

>>45034496 (OP) #

Claude code is by all accounts a revolutionary tool for getting useful work done on a computer.

It's also:

- a NodeJS app

- installed by curling a shell script and piping it into bash

- an LLM that's given free reign to mess with the filesystem, run commands, etc.

So that's what, like 3 big glaring vectors of attack for your system right there?

I would never feel comfortable running it outside of some kind of sandbox, e.g. VM, container, dedicated dev box, etc.

replies(3): >>45039575 #>>45039684 #>>45039901 #

sneak ◴[27 Aug 25 13:52 UTC] No.45039684[source]▶

>>45039484 #

None of this is the concerning part. The bad part is that it auto-updates while running without intervention - i.e. it is RCE on your machine for Anthropic by design.

replies(4): >>45039771 #>>45039873 #>>45039918 #>>45039987 #

jpalawaga ◴[27 Aug 25 14:03 UTC] No.45039873[source]▶

>>45039684 #

So we’re declaring all software with auto-updaters as RCE? That doesn’t seem like a useful distinction.

replies(2): >>45040086 #>>45042600 #

skydhash ◴[27 Aug 25 14:18 UTC] No.45040086[source]▶

>>45039873 #

That’s pretty much the definition. Auto updating is trusting the developer (Almost always a bad idea).

replies(2): >>45040184 #>>45040385 #

1. ◴[27 Aug 25 14:25 UTC] No.45040184[source]▶

>>45040086 #

↑

Malicious versions of Nx and some supporting plugins were published