Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.

Docker has released security fixes for a critical vulnerability affecting its AI-assisted feature known as Ask Gordon. The ...

Cranium AI, a leader in AI security and AI governance, today announced the discovery of a high-to-critical severity exploitation technique that allows attackers to hijack agentic AI coding assistants.

OpenAI’s latest coding-focused AI model is being positioned as a major leap forward for software development teams—promising faster prototyping, cleaner ...

Over 100,000 people just gave an AI assistant root access to their computers. That assistant can now talk to other AI assistants on a social ...

Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.

I tried a Claude Code rival that's local, open source, and completely free - how it went ...

LinkedIn has rebuilt its static application security testing (SAST) pipeline using GitHub Actions and custom workflows, ...

In a a robust Hacker News thread sparked by Jamf Threat Labs research, a VS Code team member defended the editor's Workspace ...

What's CODE SWITCH? It's the fearless conversations about race that you've been waiting for. Hosted by journalists of color, our podcast tackles the subject of race with empathy and humor. We explore ...

A true lose/lose situation.

Almost all of these icons are 20x22 pixels in size. There are alternative icons in the "small" directory that are 16x16 in size, provided by Mike Brown (mike@hyperreal.org). The following are a few ...