1. Unpatched Injection Flaw in Claude Desktop Linux Notification Handler Enables Markup and Flag Injection
A critical sanitization gap in the Linux desktop notification pipeline of Claude Desktop code has been identified during a post-#583 security review, leaving the `notify-send` execution path vulnerable to two distinct injection vectors. The flaw, rated HIGH severity by the reviewing analyst, resides in the `send_linux_...