Mozilla researchers revealed a new attack that tricks Claude Code into running hidden commands from seemingly harmless GitHub repositories.

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...

Security researchers at Novee found over 300 exploitable CI/CD workflow chains across repositories belonging to Microsoft, Google, Apache, Cloudflare, and the Python Software Foundation. The flaws ...

What actually changes in your codebase, your auth layer, and your monthly close when you collapse five provider integrations into a single OpenAI-compatible endpoint — and the workloads where the ...

Work directly with code on the Figma Design canvas. Clone repositories, generate new directions with Figma’s agent, extr ...

Figma unveiled code layers, animation support, AI-generated shaders, custom skills for its AI assistant, and deeper Weavy integration at Config 2026.

Attackers are actively exploiting path traversal and SQL injection in Langflow, LangGraph, and LangChain — below where your ...

GitLab 19.0 extends agentic AI beyond code generation into securing credentials, reviewing and merging changes, and scanning ...

Python developer Roman Imankulov nearly took the bait. The fact that he didn't can be chalked up to human intuition and AI ...

This important work introduces an integrated open-source platform for behavioral acquisition and pose estimation that substantially improves the accessibility and speed of real-time animal tracking ...

I gave Claude access to my Home Assistant. It helped me audit, debug, and improve my smart home better than I ever could have.