Fake VS Code alerts on GitHub spread malware to developers

A large-scale campaign is targeting developers on GitHub with fake Visual Studio Code (VS Code) security alerts posted in the ...
TechBooky

GitHub Expands AI Security Detections Across More Languages

GitHub is adding AI-powered security detections to its Code Security offering, aiming to catch more vulnerabilities across a ...
WinBuzzer

GhostClaw Fake OpenClaw Installer Steals macOS Dev Credentials

JFrog has uncovered GhostClaw, a fake OpenClaw npm package that stole Keychain passwords, cloud credentials, and crypto ...

Chainguard is racing to fix trust in AI-built software - here's how

Chainguard is expanding beyond open-source security to protect open-core software, AI agent skills, and GitHub Actions.
The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...
ZDNet

This new Claude Code Review tool uses AI agents to check your pull requests for bugs - here's how

Anthropic launches AI agents to review developer pull requests. Internal tests tripled meaningful code review feedback. Automated reviews may catch critical bugs humans miss. Anthropic today announced ...
AOL

Popular Cruise Line Faces Backlash After Reportedly Changing Its Dining Dress Code

A popular cruise line has reportedly begun rolling out a new dress code for its dining experiences offered on board its fleet of ships. Norwegian Cruise Line has updated its dress code to clarify what ...
komonews

New Seattle code aligns with Keep Washington Working, limiting data used in ICE actions

SEATTLE — The Seattle City Council voted 8-0 on Tuesday to approve a bill aimed at limiting the sharing of personal information for federal civil immigration enforcement (ICE). ALSO SEE | King County ...
Bleeping Computer

What 5 Million Apps Revealed About Secrets in JavaScript

Leaked API keys are nothing new, but the scale of the problem in front-end code has been largely a mystery - until now. Intruder’s research team built a new secrets detection method and scanned 5 ...
GeekWire

Former GitHub CEO launches new developer platform with huge $60M seed round

Thomas Dohmke, who helped scale GitHub Copilot during his tenure as CEO at GitHub, is back with a new startup that’s coming out of stealth with a hefty $60 million seed round. Silicon Valley venture ...
AZFamily

Class-action lawsuit targets AHCCCS over autism coverage cuts in Arizona

PHOENIX (AZFamily) — Multiple families are taking part in a class action lawsuit against Arizona’s Medicaid program in connection with coverage cuts impacting children with autism. The lawsuit, filed ...
InfoQ

LinkedIn Leverages GitHub Actions, CodeQL, and Semgrep for Code Scanning

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. This article explores that question through ...