presuming they take the output of running these linters and pass it for interpre... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		elpakal 4 months ago \| parent \| context \| favorite \| on: How we exploited CodeRabbit: From simple PR to RCE... presuming they take the output of running these linters and pass it for interpretation to Claude or OpenAI

roywiggins 4 months ago [–]

It's very silly that the linter process was handed those environment variables, since it wasn't going to do anything with them and didn't need them.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact