Claude Code's Security Deny Rules Can Be Bypassed With 50+ Subcommands — Critical Flaw Exposed in Source Leak
If you’ve ever configured Claude Code to block dangerous shell commands, there’s something you need to know: those rules may not have been protecting you the way you thought. A critical vulnerability, first disclosed by security firm Adversa AI and confirmed by SecurityWeek, reveals that Claude Code’s user-configured “deny rules” — the mechanism designed to block dangerous operations like rm, curl, and unrestricted network access — silently stop working when a command chain exceeds approximately 50 subcommands. ...