SecurityWeek

Over 100 NPM, PyPI Packages Hit in New Shai-Hulud Supply Chain Attacks

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...
Live Science

Physicist Richard Feynman's forgotten notes on 'the restaurant problem' finally deciphered after 50 years

Researchers cracked a 50-year-old math problem scribbled by Richard Feynman over lunch. The equations show that humans are ...

OpenAI and Anthropic's next lock-in play: Databases of coding intent

Samuel Colvin, CEO of Pydantic, sees the top AI frontier labs creating databases of coding intent.
Memeburn

DeepSWE Just Exposed a Big Problem With AI Coding Benchmarks

DeepSWE is changing how AI coding models are tested after exposing benchmark loopholes used by Claude Opus. Here’s why ...

Millions of AI agents imperiled by critical vulnerability in open source package

Millions of AI agents and tools around the world have been imperiled by a critical vulnerability that can allow hackers to breach the servers running them and make off with sensitive data and ...

A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale

GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has impacted hundreds of organizations.
Ars Technica

Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a vulnerability in the developers’ account workflow that gave access to its signing keys ...
BusinessMirror

Major project leadership

When it comes to major project management, clearly defining the roles between management and leadership can mean the difference between success and failure. The lifeblood of any major project, ...
cybernews

100K stars in a day: Claw-code based on leaked Claude Code smashes GitHub record

Claw-code, a clean slate rewrite of leaked Claude Code, is now the fastest growing GitHub repository, reaching 100K stars in one day. Anthropic is trying to contain the genie released from the bottle, ...
VentureBeat

Claude Code's source code appears to have leaked: here's what we know

VentureBeat made with Google Gemini 3.1 Pro Image Anthropic appears to have accidentally revealed the inner workings of one of its most popular and lucrative AI products, the agentic AI harness Claude ...
cybernews

Critical Python supply chain compromise: how library used by millions of AI developers got infected with malware

LiteLLM, a massively popular Python library used by AI developers, was compromised to deliver a mass credential harvesting malware, sending shockwaves across the industry. The “software horror” spread ...
tech

OpenAI Acquires Python Toolmaker Astral to Expand Its AI Development Ecosystem

OpenAI is set to acquire Astral, a developer of popular open-source tools for the Python programming language. This acquisition is the next step towards strengthening the Codex platform, which will ...