Or, why the software supply chain should be treated as critical infrastructure with guardrails built in at every layer.

Anthropic has exposed Claude Code's source code, with a packaging error triggering a rapid chain reaction across GitHub and ...

A hacker inserted malware in Axios, an open-source web tool downloaded tens of millions of times weekly, in a widespread hack ...

After details of a yet-to-be-announced model were revealed due to the company leaving unpublished drafts of documents and ...

A growing body of academic research warns that AI-assisted “vibe coding,” where language models assemble software from ...

The leak provides competitors—from established giants to nimble rivals like Cursor—a literal blueprint for how to build a ...

Anthropic is scrambling to contain the leak, but the AI coding agent is spreading far and wide and being picked apart.

The exposure traces back to version 2.1.88 of the @anthropic-ai/claude-code package on npm, which was published with a 59.8MB ...

How AI has suddenly become much more useful to open-source developers ...

Anthropic has leaked the full source code for Claude Code via an npm update, revealing unreleased features like autonomous ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

JavaOne Oracle has shipped Java 26, a short-term release, and introduced Project Detroit, which promises faster interop ...