Or, why the software supply chain should be treated as critical infrastructure with guardrails built in at every layer.

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

A growing body of academic research warns that AI-assisted “vibe coding,” where language models assemble software from ...

Compliance continues to drive adoption of trusted open source: We saw the same themes from December present here, underscored ...

Sigrid Jin woke up to chaos and shipped "Claw Code" by breakfast. Here's everything it taught the world.

Anthropic PBC is rushing to address the inadvertent release of internal source code behind Claude Code, an AI-powered ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

Over 500,000 lines of Claude Code source code leaked via a bad npm package—and now several unannounced features are now ...

Anthropic leaked part of the internal source code for Claude Code, its popular coding assistant. The company said it was due ...

Anthropic’s Claude Code leak reveals how modern AI agents really work, from memory design to orchestration, and why the ...

The threat group's shift to speedy attacks on AWS, Azure, and SaaS instances shows organizations need to respond quickly to ...

More open-source developers are finding that, when used properly, AI can actually help current and long-neglected programs.