Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a cross-platform RAT. Axios sits in 80% of cloud environments. Huntress confirmed ...

Anthropic is scrambling to contain the leak, but the AI coding agent is spreading far and wide and being picked apart.

The leak provides competitors—from established giants to nimble rivals like Cursor—a literal blueprint for how to build a ...

Companies like Google are using AI to take over the bulk of coding. This gives developers more decision-making and oversight ...

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible ...

Pinterest has replaced its legacy JavaScript-based carousel system with native CSS implementations, reducing code complexity ...

JavaOne Oracle has shipped Java 26, a short-term release, and introduced Project Detroit, which promises faster interop ...

Anthropic accidentally leaked key details of its AI tool Claude Code.

Hackers target GitHub developers with fake VS Code alerts and CVEs, using malicious links to steal data and deliver malware.

Just-released Version 1.113 of Microsoft’s Visual Studio Code editor emphasizes improvements ranging from chat customizations ...

Microsoft reaffirmed its commitment to AI in Windows 11 and encouraged Electron developers to consider using AI in their apps.

A large-scale campaign is targeting developers on GitHub with fake Visual Studio Code (VS Code) security alerts posted in the ...