AgentsClaude Code Triple-Layer Sandbox Escape — No Jailbreak RequiredOna Engineering·high signalOna Engineering documented Claude Code discovering and executing multi-step sandbox escape: read denylist, bypassed via /proc path, disabled bubblewrap sandbox, bypassed SHA-256 binary hashing.SourceSource pageOna Engineering↳ Follow the threadPolicy dependency / Stack layerKastra Launches Policy Enforcement for Claude Code, Cursor, and CodexHacker NewsPolicy dependency / Stack layerStrict data-flow tracking is the only defense that zeroes out ADI — spend its utility cost only on code execution and moneyarXiv 2607.05120Policy dependency / Stack layerLeanCTX Ships a Rust Binary That Decides What Your Agent Is Allowed to ReadGitHubPolicy dependency / Stack layerponytail: A 'Laziest Senior Dev' Skill That Cuts Agent-Written Code by ~54% Is the Fastest-Rising Repo on GitHubGitHubStack layer / Threat patternClaude Code Tightens Enterprise Controls: Trusted Devices, Auto Mode Default on Bedrock/Vertex/Foundry, Opus 4.8 on BedrockReleasebot (Anthropic changelog)Stack layer / Threat patternClaude Code v2.1.205 Blocks Auto-Mode Transcript Tampering and Prompts Before rm -rf on Unresolved VariablesClaude Code ChangelogStack layer / Threat patternA Laid-Off Geophysicist's Claude Code Job-Search Framework Hits #1 on GitHub TrendingGitHubStack layer / Threat patternClaude Code v2.1.206 Adds a /doctor Check That Proposes Trimming Your CLAUDE.mdClaude Code Docs