CSO Online

SAP npm package attack highlights risks in developer tools and CI/CD pipelines

Researchers say the campaign targeted developer credentials and cloud secrets while abusing trusted publishing and AI coding ...
The Hacker News

Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution

Gemini CLI CVSS 10.0 flaw in versions below 0.39.1 enabled RCE in CI workflows, forcing Google to mandate explicit workspace ...
InfoQ

GitHub Targets Large Merge Problem with Stacked PRs

GitHub has launched a native stacked pull request workflow through a new CLI extension called gh-stack, closing a gap that ...

GitHub rushed to fix a critical vulnerability in less than six hours

GitHub employees fixed a critical remote code execution vulnerability in less than six hours last month. Wiz Research used AI ...

GitHub fixes RCE flaw that gave access to millions of private repos

In early March, GitHub patched a critical remote code execution vulnerability (CVE-2026-3854) that could have allowed ...
CSO Online

Critical GitHub RCE bug exposed millions of repositories

The now‑patched flaw allowed authenticated users to execute arbitrary code via crafted git push requests, affecting ...
The Tech Edvocate

Unveiling the GitHub Vulnerability: A Deep Dive into CVE-2026-3854 and Its Implications

Spread the loveIntroduction In recent weeks, the cybersecurity community was rocked by the revelation of a critical vulnerability in GitHub’s infrastructure, identified as CVE-2026-3854. This flaw, ...
SecurityWeek

Checkmarx Confirms Data Stolen in Supply Chain Attack

Checkmarx has confirmed that hackers stole data from its GitHub environment one week after hacking it to publish malicious ...
LondonLovesBusiness

Top 10 new and promising API testing tools in 2025-2026

Explore the top 10 new and promising API testing tools in 2025-2026 that are transforming the testing landscape.
GitHub

Claude Code Skills & Plugins — Agent Skills for Every Coding Tool

235 production-ready Claude Code skills, plugins, and agent skills for 12 AI coding tools. The most comprehensive open-source library of Claude Code skills and agent plugins — also works with OpenAI ...