Bundled picomatch@4.0.3 affected by CVE-2026-33671 (ReDoS via extglob)
Resolved 💬 1 comment Opened Apr 24, 2026 by Frostburn2332 Closed May 28, 2026
@anthropic-ai/claude-code (global install) bundles picomatch@4.0.3, which is affected by CVE-2026-33671 — ReDoS via crafted extglob patterns.
The fix is in picomatch@4.0.4 (also backported to 3.0.2 and 2.3.2); upstream tracker: micromatch/picomatch#165.
In practice, the vulnerability is not exploitable in the context of claude-code (no user-controlled glob input reaches picomatch), but image scanners still flag it and picomatch cannot be patched externally via npm overrides on a globally installed CLI.
Could a claude-code patch release be published that picks up picomatch@4.0.4+?
Filed to track on our side — happy to share more context if useful.
This issue has 1 comment on GitHub. Read the full discussion on GitHub ↗