Developer Tech

Mozilla shows Claude Code malware risk in clean GitHub repo

Mozilla’s 0din team showed how a Claude Code malware GitHub repo attack could use a clean-looking repository to open a ...
Opinion
Database Trends and ApplicationsOpinion

Chainguard Repository 2.0 Delivers Security and Compliance Updates

Chainguard is expanding Repository with new policy controls, malware and greyware scanning, and support for Java, Python, and container artifacts-helping organizations govern software consumption ...
Visual Studio Magazine

Spring AI 2.0 Goes GA, Giving Java Developers a More Mature AI App Stack

Spring AI 2.0 advances the Java framework for generative AI apps with a Spring Boot 4 baseline, cleaner agentic tooling, Model Context Protocol support and vendor-backed integrations including Azure ...
Tech Times

Multi-Agent AI: Disagreeable Agents Tank Negotiations but Not Code, Study Finds

Multi-agent AI agent personality shapes outcomes in collaborative and negotiation workflows but not in structured coding, ...
SecurityWeek

Researchers Demo New Claude Code Attack Using Harmless-Looking Repositories to Hijack Developer Machines

Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
InfoWorld

Azul offers free JVM vulnerability risk assessment

Azul’s free risk assessment for Java estates addresses the blind spot that autonomous AI exploitation tools are increasingly ...
CoinDesk

Crypto analytics firm Chainalysis proposes standards for blockchain tracing

The blockchain analysis company published a proposed ontology for how investigators can identify clusters of crypto addresses ...

North Korea-Linked macOS Malware Uses Prompt Injection to Evade AI Analysis

SentinelOne says macOS.Gaslight uses prompt injection to mislead AI-based malware analysis, steal data, and use Telegram for ...