GitHub disabled 73 Microsoft repositories on June 5 after a malicious commit landed in an Azure project, in what researchers described as a supply chain attack aimed at developer workstations and AI ...
Researchers say prompt injection attacks could manipulate AI coding agents to access sensitive credentials stored in software ...
GitHub has announced that npm v12, expected next month, will introduce several security-focused changes aimed at blocking ...
npm 12 disables install scripts by default, requiring explicit approval to reduce dependency-based code execution risks.
The change, expected in July, will likely block one of the more common attack vectors; developers are wondering what took ...
GitHub Copilot security scanning arrives in the terminal with /security-review, an experimental pre-commit slash command that ...
Researchers warn Agentjacking can abuse Sentry errors to make AI coding agents run malicious code on developer machines.
GitHub disabled 73 Microsoft repos after the Miasma worm exploited previously compromised credentials to plant malware targeting AI coding agents.
Researchers at Cyera found six vulnerabilities in prtobuf.js, including a flaw that can turn attacker-controlled schema data ...
To operate safely at higher development velocity, organizations must embed reliability guardrails directly into their ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results