While AI tools are increasingly used in development, they should enhance rather than replace human input. Developers must shift from merely writing code to orchestrating and validating AI-generated code. This ‘spec coding’ emphasizes creating specifications that guide both AI and human efforts. Infrastructure must support this transition, with safeguards like reliable build pipelines and automated security scans. Ultimately, AI is a tool to aid developers, but the nuanced responsibilities of design, security, and performance remain firmly in human hands, ensuring responsible and effective use.
Will AI Kill the OSS Star?
As AI-driven development accelerates, open source software faces an uncomfortable paradox: Usage is rising while engagement, sustainability and community economics quietly erode. AI isn’t eliminating OSS, but it is reshaping how code is written, discovered and maintained. The result may not be the death of open source, but the end of its long reign as the default foundation of modern software.
What is OPA (Open Policy Agent)?
Open Policy Agent (OPA) is a versatile policy engine designed to handle policy enforcement across cloud infrastructures. It enables users to define and apply policies consistently across a variety of systems, helping maintain security and compliance in dynamic environments. In my view, OPA represents a significant step forward for cloud infrastructure. From experience, unless a […]
Meta Introduces Confucius Code Agent: A New Approach to AI-Powered Software Engineering
Explore the Confucius Code Agent by Meta and Harvard, designed to enhance productivity in software engineering with a focus on agent architecture and operational performance.
Attackers Testing New Strain of Shai-Hulud on npm: Aikido
Threat actors behind the virulent Shai-Hulud worm that wreaked havoc in open npm repositories toward the end of 2025 apparently are trying out a new strain that comes with slight modifications. Security researchers with Aikido Security, who have been tracking Shai-Hulud for months, wrote in a report that was updated January 2 that there doesn’t […]
The Deterministic Future of AI-Generated Code
AI has eliminated the bottleneck of writing code—but introduced massive uncertainty in verifying it. This piece explores why deterministic guardrails, smarter linters, and eBPF-driven observability are becoming essential to code review and CI in the AI era.
The AI-Powered Evolution of Software Development
Artificial intelligence is revolutionizing software development—accelerating coding, improving quality, and enabling autonomous operations. From GitHub Copilot to AI-driven DevOps, businesses leveraging AI tools are building smarter, faster, and more adaptive applications.
Massive VS Code Secrets Leak Puts Focus on Extensions, AI: Wiz
Researchers with cybersecurity firm Wiz earlier this year discovered, almost by chance, a significant supply chain risk and massive secrets leak in the Visual Studio Code and OpenVSX marketplaces that they said put a focus on the ongoing security issues presented by extensions and plugins. In their months-long investigation with Microsoft, the researchers found that […]
WhiteCobra Targets Developers with Dozens of Malicious Extensions
A threat group is dropping two dozen malicious extensions into the VSCode and Open VSX marketplaces, targeting developers using the VSCode, Cursor, and Windsurf source code editing tools with the goal of draining cryptocurrency wallets. Researchers with security firm Koi Security have been tracking WhiteCobra’s activities for more than a year as the bad actors […]
Malicious Nx Packages Used in Two Waves of Supply Chain Attack
The Nx build system was hit by a supply chain attack dubbed “s1ngularity,” leaking thousands of secrets and exploiting AI tools for data theft.
- « Previous Page
- 1
- 2
- 3
- 4
- 5
- …
- 78
- Next Page »