Threat actors have struck the software supply chain yet again, this time hitting the Python Package Index (PyPI) with Mini Shai-Hulud in an attempt to spread poisoned code. In the latest campaign, ...
A security update closes a malicious code vulnerability in Docker for macOS. If attackers successfully exploit a security ...
PewDiePie has released Odysseus, a free and open-source AI workspace that runs on a user’s own computer. The project is not a new AI model. Instead, ...
AI-powered tools can help teams accelerate processes throughout the software development life cycle. Here’s how to make them ...
Sometime around the last week of May 2026, attackers uploaded poisoned packages to three of the most widely used software ...
A new report out today from cybersecurity company Forcepoint LLC’s X-Labs research team details a supply chain attack that compromised LiteLLM, a widely used open-source Python ...
TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious versions anyway. The CI/CD Trust-Chain Audit Grid maps the six gaps it ...
AI hackathon success stories: seven builders who won by making autonomous AI agents safer. OlympusOS, Deals Machine, Kraken ...
Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times, in a new Shai-Hulud ...
Meta’s Rust-powered linter and type checker for Python pairs blazing speed with advanced and innovative features.