Most Read
Most read news & articles within last 7 days

Novee Uncovers Cordyceps: The Latest Threat to CI/CD Pipelines
A newly discovered supply chain security flaw is once again putting a spotlight on inherent weaknesses in CI/CD pipelines and the growing interest among cyberthreat actors to exploit them. Security researchers with ...

GitHub Copilot Bills Hit $800: Visual Studio’s June Update Adds Real-Time Usage Alerts and MCP Trust Checks
Visual Studio's June update adds real-time Copilot usage alerts and MCP server trust checks, responding to billing and agent security concerns ...

Block Details Builderbot Framework for Orchestrating AI Agents Across SDLC
The software engineers at Block have developed an orchestration layer they are using to manage artificial intelligence (AI) agents that have been trained to automate multiple tasks across their software development lifecycle ...

Former GitHub CEO Unveils Distributed Git Network Built for AI Coding Agents
As AI coding agents become a larger part of software development, a new startup founded by former GitHub CEO Thomas Dohmke is introducing infrastructure built to address the growing pressure on centralized ...

IBM and Red Hat Launch Lightwell Catalog to Automate Remediation
IBM and Red Hat this week revealed that Lightwell Network, a catalog of more than 6,500 application-layer dependencies that drives an automated vulnerability remediation service, is now generally available. At the same ...

North Korea Expands the Reach of PolinRider Supply Chain Attack Campaign
The North Korean-sponsored threat groups behind the long-running fake interview scams targeting developers are expanding the PolinRider supply chain campaign that has escalated over the past several months. Reports from cybersecurity vendors ...

Enterprise Smart Contracts Have a Cryptography Problem. EY Just Built a Way Around It
The business case for smart contracts is building fast. Major financial institutions are using programmable, code-based agreements to underpin financial workflows, supply chain operations, and tokenization initiatives. Developers are being asked to ...

‘GitLost’ Flaw Lets Attackers Trick GitHub AI Agent Into Leaking Private Repos
Noma researchers again show how easy it is to manipulate AI agents with malicious commands via indirect prompt injection attacks ...

The Next DevOps Bottleneck: When AI Generates More Software Than Organizations Can Manage
The organizations that benefit most from AI will probably not be the ones generating the largest amount of code. They will be the ones who build systems capable of managing software at ...

SpaceXAI’s Grok 4.5 Undercuts Anthropic and OpenAI on Coding Agent Pricing
SpaceXAI's Grok 4.5 undercuts Opus 4.8 on price, matching it on key coding benchmarks, and adds new safeguards against cybersecurity risks ...

