A report published by JFrog finds that cybercriminals are now increasingly targeting the artificial intelligence (AI) tools and platforms used by application development teams. Based on an analysis of 18.2 billion artifacts managed via the JFrog Platform, security researchers discovered 969 AI agent skills carrying high-impact payloads in addition to 495 malicious AI models on […]
Perplexity Bumblebee Shakes Loose Hidden Threats on Dev Desktops
The fight to maintain security has moved to the engineer’s messy desktop. Last week, AI search provider Perplexity open-sourced an internal tool, Bumblebee, for checking developer machines, either Linux or macOS, for vulnerable software. Continuous integration pipelines have baked security checks into them, with Software Bills of Materials (SBOMs) ensuring that the correct version of […]
OWASP Adopts CVE Lite CLI to Boost Dependency Scanning
Checking for dependency vulnerabilities in freshly developed software is usually done near the end of the build process. Remediation at that point can be tricky. Now, JavaScript and TypeScript developers can check for vulnerabilities themselves as they – or their agents – write their source code, using an open source project called CVE Lite CLI. […]
Eight Ways AI Will Reshape DevOps in 2026 and Beyond
In 2026 and beyond, AI will not just change how software is developed, but change the very fundamentals of how people work.
How to Create an AI Acceptable Use Policy
When teams know which tools are acceptable and which data are off-limits, AI becomes a disciplined advantage rather than a quiet source of risk.
Microsoft Open-Sources RAMPART and Clarity to Bring Agent Safety Into the Dev Workflow
Microsoft open-sources RAMPART and Clarity to help dev teams embed AI agent safety testing directly into CI pipelines and design workflows.
CloudBees Survey Surfaces Increase in Production Issues Attributable to AI
A survey of 213 IT leaders, conducted by CloudBees, finds that while 93% report they are seeing productivity gains that are driven by increased adoption of artificial intelligence (AI) tools, a full 81% also report they have seen an increase in production issues attributable to AI-generated code. Shared this week at an Agentic DevOps World […]
OpenTelemetry Graduation Sets Stage for AI Observability
OpenTelemetry just hit graduated status at the CNCF, and the timing matters more than the milestone itself. After years of consolidating what used to be OpenTracing and OpenCensus, the project has quietly become the default way modern applications emit traces, metrics and logs — right as the industry is staring down a new wave of […]
Software Weaponization Raises DevSecOps Stakes
The threat model that DevSecOps teams have been working from for the last decade was built around accidental vulnerabilities — mistakes that needed to be found and fixed before someone exploited them. That assumption is breaking. Vulnerabilities are increasingly being treated as strategic assets, stockpiled by nation-states and threat actors and held back from disclosure […]
Cursor’s Composer 2.5 Brings Smarter, More Reliable AI Coding Agents
AI-assisted coding tools are getting a meaningful upgrade. Cursor has released Composer 2.5, the latest version of its proprietary coding agent model, and the improvements go well beyond a version bump. Composer 2.5 is described as a substantial improvement in intelligence and behavior over its predecessor, Composer 2. It handles sustained work on long-running tasks […]
- « Previous Page
- 1
- 2
- 3
- 4
- 5
- …
- 69
- Next Page »