Claude CodeMyTube has an Unauthenticated Admin Privilege Escalation via Passkey Registration
How AI Introduced This
AI-authored code contributed via b7bf9b7960958c6c51f85fe50a2fc041a086c466, which rewrote both authorization middlewares and explicitly kept passkey registration on the unauthenticated public-path allowlists. The original flaw began in earlier human-authored commits, but the AI co-authored refactor reimplemented the vulnerable authorization exemption that the fix later removed.
▶Attribution Chain
▶Bug-Introducing Commits(1)
fix: Prevent authorization bypass via query parameter injection (GHSA-63cf-662x-crp2)
Deep Verification
by GPT-5.4Blame on the pre-fix files points the removed lines in both roleBasedAuthMiddleware.ts and roleBasedSettingsMiddleware.ts to this commit: it introduced PUBLIC_PREFIX_PATHS entries for "/settings/passkeys/register" and "/passkeys/register". Those exact entries are what d6c1275 removes, and matchesPathOrSubpath made them cover both /register and /register/verify. Although the same flawed public-registration policy already existed earlier, this AI co-authored commit rewrote the middleware logic and reimplemented the vulnerable allowlist in newly authored code, so it is a confirmed reimplementation BIC rather than a mere move/rename.
▶AI Signals(1)
| Claude Code | Co-author trailer | Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> | 95% |