Lazarus Group concealed a four-module remote access toolkit inside six fake npm Rollup polyfill packages that fired at import ...
You're missing out if you're not using Claude sub-agents ...
GitHub secret scanning now extends beyond org-owned repositories: Public Monitoring scans all of GitHub.com in real time, ...
Sourcegraph, the code intelligence platform that helps enterprise engineering teams understand, oversee, and evolve their codebases, announced public beta availability of Agentic ...
New benchmarks show semantic code graphs helping coding agents find change locations faster and complete updates more ...
CVE-2026-12957 in Amazon Q is the third MCP auto-execution vulnerability in three AI coding tools. The pattern reveals a ...
Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Chainguard is expanding Repository with new policy controls, malware and greyware scanning, and support for Java, Python, and container artifacts-helping organizations govern software consumption ...
AI compressed the build. Fundamentals matter more, not less, and the product funnel is now where engineers earn their keep.