Ofirh

**Name of the Vulnerable Software and Affected Versions** Claude Code versions prior to 2.1.7 **Description** Claude Code, an agentic coding tool, did not properly enforce deny rules defined in the `settings.json` file when handling symbolic links. Specifically, if access to a file (like `/etc/passwd`) was explicitly denied, but Claude Code had access to a symbolic link pointing to that file, the restricted file could be read through the symlink, bypassing the deny rule enforcement. **Recommendations** Update to version 2.1.7 or later.