Two months after Rapid7 discovered the hole in the Git service, the project maintainer has yet to patch the bug.

The OWASP-backed tool scans JavaScript and TypeScript lockfiles locally, aiming to help developers catch and remediate dependency risks before CI failures.

Perplexity launches Bumblebee: How its new read-only dev scanner differs from Chainguard ...

In March 2026, someone hijacked a maintainer account for Axios, a JavaScript HTTP library downloaded more than 45 million ...

The Shai-Hulud supply-chain malware campaign is exploiting the automated systems developers trust to publish software safely.

Claude Code has made the digital photo tool Adobe Lightroom functional on Linux. The project began with a very simple prompt.

The JavaScript and TypeScript server and bundler Bun will consist of Rust code in the future. Within weeks, Claude Code ported the software.

A decision by NHS England to withdraw open-source code created with UK taxpayer funds because of the risk posed by computer-hacking AI models is attracting growing backlash. Last month, Mythos, an AI ...

Matthew Goslett’s storied career began with IRC, dial-up Internet, and a fascination with how messages travelled between ...