AI SecurityMay 7, 2026
'TrustFall' Convention Exposes Claude Code Execution Risk
Malicious code repositories trigger execution in Claude, Cursor, Gemini, and CoPilot CLIs via inadequate warnings.
Summary
Security researchers presented 'TrustFall' at a convention, demonstrating that multiple AI code execution tools (Claude Code, Cursor CLI, Gemini CLI, CoPilot CLI) are vulnerable to code execution attacks from malicious repositories due to insufficient user warnings and validation. The vulnerability allows attackers to execute arbitrary code with minimal or no user interaction, exploiting the trust users place in these integrated development environments.
Entities
Claude Code (product)Cursor CLI (product)Gemini CLI (product)CoPilot CLI (product)TrustFall (campaign)