A sandbox escape vulnerability in Claude Code allowed writing arbitrary files outside the workspace by creating symlinks from within the sandbox that were followed by unsandboxed processes, potentially leading to code execution outside the sandbox.
PoC
Claude Code +8
sandbox-escape
symlink
arbitrary-file-write
2r
2t
1c
updated