[BUG]

Resolved 💬 2 comments Opened Apr 15, 2026 by AlexZio00 Closed May 24, 2026

Preflight Checklist

  • [x] I have searched existing issues and this hasn't been reported yet
  • [x] This is a single bug report (please file separate reports for different bugs)
  • [x] I am using the latest version of Claude Code

What's Wrong?

Title:
[Windows] Desktop app session freeze caused by AhnLab Safe Transaction SSL inspection blocking
CORS Worker

Body:
## Environment

  • OS: Windows 11
  • App version: 1.2581.0 (CCD 2.1.101)
  • Security software: AhnLab Safe Transaction Service (SafeTransactionSVC) — Korean financial

security software required by stock trading HTS apps, cannot be disabled

## Issue
Clicking any session in the desktop app causes permanent freeze (tested 30+ minutes). App UI loads
fine, session list shows, but entering any session hangs indefinitely.

## Root Cause (confirmed via logs)
claude.ai-web.log shows repeated:
SecurityError: Failed to construct 'Worker': Script at
'https://assets-proxy.anthropic.com/claude-ai/v2/assets/worker-portable-DlxMyTNL.js'
cannot be accessed from origin 'https://claude.ai'.
AhnLab Safe Transaction performs SSL/TLS inspection and strips CORS headers from CDN responses,
causing the Electron app's Web Worker to fail with SecurityError. This blocks session
initialization entirely.

## Impact
AhnLab Safe Transaction is mandatory for all Korean retail stock trading platforms (required by
Korean financial regulators). Cannot be uninstalled or stopped — it's protected against
termination even with admin privileges.

## Expected
Either CSP exception handling for Worker failure, or fallback behavior that doesn't cause complete
session freeze.

What Should Happen?

Issue

Clicking any session in the desktop app causes permanent freeze (tested 30+ minutes). App UI loads
fine, session list shows, but entering any session hangs indefinitely.

## Root Cause (confirmed via logs)
claude.ai-web.log shows repeated:
SecurityError: Failed to construct 'Worker': Script at
'https://assets-proxy.anthropic.com/claude-ai/v2/assets/worker-portable-DlxMyTNL.js'
cannot be accessed from origin 'https://claude.ai'.
AhnLab Safe Transaction performs SSL/TLS inspection and strips CORS headers from CDN responses,
causing the Electron app's Web Worker to fail with SecurityError. This blocks session
initialization entirely.

## Impact
AhnLab Safe Transaction is mandatory for all Korean retail stock trading platforms (required by
Korean financial regulators). Cannot be uninstalled or stopped — it's protected against
termination even with admin privileges.

## Expected
Either CSP exception handling for Worker failure, or fallback behavior that doesn't cause complete
session freeze.

Error Messages/Logs

Steps to Reproduce

Issue

Clicking any session in the desktop app causes permanent freeze (tested 30+ minutes). App UI loads
fine, session list shows, but entering any session hangs indefinitely.

## Root Cause (confirmed via logs)
claude.ai-web.log shows repeated:
SecurityError: Failed to construct 'Worker': Script at
'https://assets-proxy.anthropic.com/claude-ai/v2/assets/worker-portable-DlxMyTNL.js'
cannot be accessed from origin 'https://claude.ai'.
AhnLab Safe Transaction performs SSL/TLS inspection and strips CORS headers from CDN responses,
causing the Electron app's Web Worker to fail with SecurityError. This blocks session
initialization entirely.

## Impact
AhnLab Safe Transaction is mandatory for all Korean retail stock trading platforms (required by
Korean financial regulators). Cannot be uninstalled or stopped — it's protected against
termination even with admin privileges.

## Expected
Either CSP exception handling for Worker failure, or fallback behavior that doesn't cause complete
session freeze.

Claude Model

None

Is this a regression?

Yes, this worked in a previous version

Last Working Version

_No response_

Claude Code Version

latested

Platform

Other

Operating System

Windows

Terminal/Shell

PowerShell

Additional Information

_No response_

View original on GitHub ↗

This issue has 2 comments on GitHub. Read the full discussion on GitHub ↗