I don't think that's accurate. The malware prompt has been around since Sonnet 3...

rawicki · 2026-04-12T15:17:03 1776007023

I started seeing "not a malware, continuing" in almost every reply since around 2 weeks ago. Maybe you just reintroduced it with some regression? Opus 4.6

bcherny · 2026-04-12T15:21:37 1776007297

That's weird. Would you mind running /feedback and sharing the id here next time you see this? I'd love to debug

rawicki · 2026-04-12T15:55:00 1776009300

Sure, I really appreciate you looking at this.

a6edd0d1-a9ed-4545-b237-cff00f5be090 / https://github.com/anthropics/claude-code/issues/47027

I'm happy to provide any other info that can be useful (as long as i'm not sharing any information about the code or tools we use into a public github issue).

bcherny · 2026-04-12T16:54:52 1776012892

Thanks for the report! This was fixed in v2.1.92.

Please:

1. Upgrade to the latest: claude update (seems like you did this already)

2. Start a new conversations (resuming an old convo may trigger this bug again in that convo)

egamirorrim · 2026-04-12T19:39:00 1776022740

This is bloody great Boris. Thank you.

bcherny · 2026-04-12T16:37:58 1776011878

Thank you! Looking

obrajesse · 2026-04-12T15:43:32 1776008612

I’ve seen this a couple of times recently. Including right after compact. I’ll /feedback it next time I see it

ElFitz · 2026-04-13T09:43:27 1776073407

Same. Will run it too when I next get it.

bavell · 2026-04-12T15:29:28 1776007768

I've been using CC a decent amount the past few weeks and have never seen this malware stanza...?

echelon · 2026-04-12T15:33:10 1776007990

1. I've never seen this. Is there a config option to unhide it if it's happening? Is this in Claude Code? Does it have to be set to verbose or something?

2. Can we pay more/do more rigorous KYC to disable it if it's active?

bcherny · 2026-04-12T15:39:11 1776008351

This warning is not enabled for modern models. No action needed. I'm digging into the report above as soon as they're able to /feedback.