Claude-Powered AI Bot Compromises Multiple GitHub Repositories

An autonomous bot using Claude scanned over 47,000 GitHub repositories. It successfully compromised several major projects by submitting malicious pull requests that exploited CI/CD workflows. The bot operated independently, identifying vulnerabilities and exfiltrating tokens without manual intervention.