Friendly Fire showed Claude Code and Codex executing attacker-controlled code during security reviews. Learn the safer read-only, isolated setup.
Have you ever let Claude Code or Codex review an unfamiliar repository, and what permissions did you give it?
Have you ever let Claude Code or Codex review an unfamiliar repository, and what permissions did you give it?