The FBI warned that TeamPCP software supply chain attacks targeted developer tools to steal cloud credentials, SSH keys, and ...
Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
GitHub secret scanning now extends beyond org-owned repositories: Public Monitoring scans all of GitHub.com in real time, ...
By registering the LongCat-2.0 repository under the open-source MIT License, Meituan positions the architecture with maximum ...
Zscaler found attackers using SEO poisoning and hidden prompts in malicious websites to manipulate AI agents into making cryptocurrency payments.
Local AI inference at 32B-parameter quality, no cloud API required: University of Waterloo researchers released PAW on July 2 ...
CVE-2026-12957 in Amazon Q is the third MCP auto-execution vulnerability in three AI coding tools. The pattern reveals a ...
Chinese AI model GLM-5.2 is rapidly gaining attention beyond its home market, with major US technology companies beginning to ...
Local AI inference at 32B-parameter quality, no cloud API required: University of Waterloo researchers released PAW on July 2, 2026, a system that compiles any natural-language task spec into a 23MB ...
The model supports a one-million-token context window and introduces a new sparse attention architecture for coding and ...
An examination of the trade secret risks posed by the integration of generative AI (GenAI) and agentic AI into core business ...