Companies are treating these repositories like content delivery networks - now the Linux Foundation and colleagues are saying ...

A North Korean APT has crafted malicious software packages to appeal to AI coding agents, while ‘slopsquatting’ shows the ...

A single line of Python code was all it took. Developers who ran import lightning after installing versions 2.6.2 or 2.6.3 of ...

OpenAI introduced AI-generated pets to the Codex app, its agentic tool that helps with coding. These "optional animated companions" don't do any coding themselves, but serve as a floating overlay that ...

Malicious Lightning 2.6.2/2.6.3 released April 30 enable credential theft via hidden payload, leading to PyPI quarantine and ...

A stealthy Python-based backdoor framework capable of long-term surveillance and credential theft has been identified ...

The popular Python package for monitoring data quality was briefly available as a malicious version. Provider Elementary ...

AI trading bots are no longer used only by professional quant teams. In 2026, traders are using automated tools to monitor ...

SAS, a global leader in data and AI, today announced expansions to SAS ® Viya ® that advance the platform's agentic AI ...

The open-source package elementary-data, with over a million downloads per month, has been compromised. Attackers exploited a vulnerability in a GitHub ...

Aerospike, Inc., today unveiled a new unified, AI-native application development experience that makes it simple for both humans and AI coding assistants to confidently prototype, integrate, deploy, ...

A newly discovered threat actor is using Microsoft Teams, AWS S3 buckets, and custom "Snow" malware in a multipronged ...