Concerns Raised Over Remote System Prompt Injection in Anthropic's Claude Code v2.1.150
A user has reported alarming findings regarding the latest upgrade of Claude Code to version 2.1.150, which now allows Anthropic to perform remote system prompt injections via network calls. The user identified two data sources involved in this process: an API call to the startup endpoint and a feature flag that refreshes every 60 seconds. The changelog misleadingly states 'Internal infrastructure improvements (no user-facing changes)', while the user confirmed that previous versions had non-functional injection points. They noted that blocking specific traffic settings can mitigate this issue.
