In the wake of the massive Shai-Hulud supply chain attack that ripped through npm late last year and compromised more than 700 packages and exposed 25,000 repositories, developers in the JavaScript world embraced a two-part defense strategy. The widely adopted playbook called for disabling lifecycle scripts and using lockfiles. “It became the standard advice everywhere […]
N. Korea Contagious Interview Campaign Turns to VS Code to Deliver Backdoor
Jamf security researchers said state-sponsored espionage actors are using malicious VS Code projects to steal information.
Malicious VS Code Extensions Take Screenshots, Steal Info
Developers were the targets of two new malicious Microsoft Visual Studio Code (VS Code) extensions created by a threat actor that security researchers believe is experimenting with methods for delivering information-stealing malware to the victims’ systems. The malicious extensions come posing as a harmless “premium dark theme” and an AI-powered coding assistant, but both – […]
Anthropic Acquires Bun to Accelerate AI Coding Tools
Anthropic says it has acquired Bun, a high-performance JavaScript toolkit, to turbocharge its artificial intelligence (AI) coding capabilities — further underscoring a significant push into developer tooling as it scales Claude Code, its code-generation platform. Financial terms of the deal were not disclosed, but Anthropic emphasized that Bun will remain open source and MIT-licensed. The […]
New Relic Enhances Azure Integration with AI-Powered Observability Tools
New Relic Inc. unveiled a suite of intelligent observability integrations with Microsoft Azure on Tuesday to streamline incident response and boost developer productivity as enterprises rush to adopt artificial intelligence (AI) workflows. The company’s new AI Model Context Protocol (MCP) Server now feeds real-time observability data directly into Azure’s SRE Agent and Microsoft Foundry, eliminating […]
GitHub Adds Platform for Managing AI Agents Embedded in DevOps Workflows
GitHub today launched a platform for managing artificial intelligence (AI) agent workflows across the entire software development lifecycle (SDLC). Announced at the GitHub Universe 2025 conference, Agent HQ makes it possible to unify the management of AI agents developed by not just GitHub but also third-party providers, including Anthropic, OpenAI, Google, Cognition and xAI. As […]
JFrog CEO: AI Agents Require Practices Beyond Security, Traceability
NAPA, Calif. — A new persona in software development, artificial intelligence (AI) agents rather than human developers, has made it imperative that foundational platforms incorporate agentic practices alongside security, traceability, and visibility to succeed in the AI era. “Every foundational platform requires a single system of record,” Ben Haim told the crowd. “If you don’t […]
Malicious Nx Packages Used in Two Waves of Supply Chain Attack
The Nx build system was hit by a supply chain attack dubbed “s1ngularity,” leaking thousands of secrets and exploiting AI tools for data theft.
Qwiet AI Extends Microsoft Support in Platform for Fixing Vulnerabilities
Qwiet AI extends its AI-driven application security platform with deeper Microsoft DevOps integrations, enhanced automation, and expanded AutoFix capabilities to proactively remediate code vulnerabilities.
GitHub CEO To Step Down As Company Is More Tightly Embraced by Microsoft’s CoreAI Team
Thomas Dohmke, CEO of Microsoft Corp.-owned GitHub, said on Monday he’s stepping down and will leave the company at the end of 2025 to become “a founder again,” signaling a major shakeup in how the artificial intelligence (AI) coding unit is run. Since Microsoft acquired GitHub in 2018 for $7.5 billion, it has operated as […]
- « Previous Page
- 1
- 2
- 3
- 4
- …
- 11
- Next Page »