Bundled picomatch@4.0.3 affected by CVE-2026-33671 (ReDoS via extglob)

Resolved 💬 1 comment Opened Apr 24, 2026 by Frostburn2332 Closed May 28, 2026

@anthropic-ai/claude-code (global install) bundles picomatch@4.0.3, which is affected by CVE-2026-33671 — ReDoS via crafted extglob patterns.

The fix is in picomatch@4.0.4 (also backported to 3.0.2 and 2.3.2); upstream tracker: micromatch/picomatch#165.

In practice, the vulnerability is not exploitable in the context of claude-code (no user-controlled glob input reaches picomatch), but image scanners still flag it and picomatch cannot be patched externally via npm overrides on a globally installed CLI.

Could a claude-code patch release be published that picks up picomatch@4.0.4+?

Filed to track on our side — happy to share more context if useful.

View original on GitHub ↗

This issue has 1 comment on GitHub. Read the full discussion on GitHub ↗