Malicious repositories can trigger code execution in Claude Code, Cursor CLI, Gemini CLI, and CoPilot CLI with minimal or no user interaction, thanks to skimpy warning dialogs.
'TrustFall' Convention Exposes Claude Code Execution Risk
Summary + source link. No paywalls, no tracking.