Repo-Jacking Anthropic's Claude Community Plugins (and the SHAs That Saved Them) (opens in new tab)

Several Claude Community Plugins were vulnerable to repo-jacking. The direct code installation path was mitigated by SHA checks, but Claude Code’s “view plugin UI” feature would redirect users to t…