In March 2026, someone hijacked a maintainer account for Axios, a JavaScript HTTP library downloaded more than 45 million ...

Hugging Face hosts 352,000 unsafe model issues. ClawHub's registry contains 341 malicious AI agent skills. The AI supply chain is now the most attractive target in software security.

Why it matters: Automation reduces human error, boosts productivity, and frees you from repetitive work so you can focus on what truly matters. Where it works: From file management and web scraping to ...

The attack on the Trellix source code repository disclosed last week has been claimed by the RansomHouse threat group, which leaked a small set of images as proof of the intrusion. Yesterday, the ...

Stop throwing money at GPUs for unoptimized models; using smart shortcuts like fine-tuning and quantization can slash your ...

New research exposes how prompt injection in AI agent frameworks can lead to remote code execution. Learn how these ...

BlueRock today announced the open source release of BlueRock MCP Python Hooks, a lightweight runtime observability tool for Python. It captures MCP server activity by inspecting the protocol, ...

CLI-Anything generates SKILL.md files that AI agents trust and execute. Snyk found 13.4% of agent skills contain critical ...

Companies are treating these repositories like content delivery networks - now the Linux Foundation and colleagues are saying ...

Foundational, the data and AI governance platform, today announced the general availability of Foundational IQ, a powerful ...

Armed with some Python and a white-hot sense of injustice, one medical student spent six months trying to figure out whether ...

OpenMythos is a from-scratch attempt to reconstruct the architecture behind Claude Mythos, the model Anthropic refuses to ...