News

With Vibe Coding AI tools generating more code than ever before, enterprises need quality assurance tools to make sure it all works - here's how to evaluate and choos…

CodeRabbit's $60M funding highlights enterprise need for AI code review platforms, with organizations seeing 25% efficiency ...
SecurityWeek

Shai-Hulud Supply Chain Attack: Worm Used to Steal Secrets, 180+ NPM Packages Hit

Shai-Hulud is the third major supply chain attack targeting the NPM ecosystem after the s1ngularity attack and the recent ...
CSO Online

Warning: Hackers have inserted credential-stealing code into some npm libraries

Dozens of npm libraries, including a color library with over 2 million downloads a week, have been replaced with novel ...
ZDNet

Linux kernel source code repositories get better security

Immediately after the 2011 break-in, the Linux Foundation began "mandating a fairly strict authentication policy for those developers who commit directly to the git repositories housing the Linux ...
PC Magazine

Hacker Tries to Ransom Github Code Repositories For Bitcoin

The attack started only about day ago and has also been hitting code repositories on similar services Bitbucket and GitLab. To break in, the hacker appears to be targeting accounts with weak passwords ...

Macroscope raises $30M to speed up software projects with AI

Macroscope provides an AI platform that focuses on two main use cases. The first is helping developers find and fix bugs in ...
Security Systems News

Okta GitHub repositories hacked, source code stolen

YARMOUTH, Maine – It’s been a hard year for security at identity and access management company Okta, with its most recent data breach incident causing the company to lose its source code to threat ...

This 'critical' Cursor security flaw could expose your code to malware - how to fix it

A feature being disabled by default could leave users and their organizations vulnerable to commands that run automatically.
PC World

SHA-1 collision can break SVN code repositories

A recently announced SHA-1 collision attack has the potential to break code repositories that use the Subversion (SVN) revision control system. The first victim was the repository for the WebKit ...