Meta Astryx design system is back on GitHub Trending, with a JSON manifest CLI that gives AI coding agents a machine-readable ...
Threat actors compromised AsyncAPI packages and weaponized trusted CI/CD workflows to distribute malware through npm. This ...
AWS and Anthropic have released the Claude apps gateway for AWS, a self-hosted control plane that centralizes identity, ...
Claude Code auto mode enterprise governance changed Friday: v2.1.207 removes the opt-in flag for Amazon Bedrock, Google ...
In Operation Muck and Load, over 200 GitHub repositories serve a Go module that leads to Windows malware infections.
The new release adds multi-agent workflows, parallel execution and built-in governance as enterprises look beyond AI coding ...
The flaw, which impacted Amazon, Anthropic, Google, Cursor and others, let the agent give the human false information on ...
A decades-old Unix symlink trick fools six AI coding assistants, including Claude Code, into writing SSH keys and shell ...
Wiz says GhostApproval abuses symlinks so AI coding agents write to SSH keys or shell startup files while showing benign ...
ActiveState explains how GitHub Actions attack chains can evade traditional CI security scanners, why passing a scan doesn't ...
Indirect prompts hidden in a repository can lead to Claude Code spawning a reverse shell on the developer’s machine. Attackers can take over developers’ systems by hiding indirect prompts in ...