The Hacker News

Hacking Salesforce Sites With an LLM Agent

AI agent exploited Salesforce sites; 263 objects, 55 Apex methods exposed at one portal, leading to PII and file leaks.
The Hacker News

⚡ Weekly Recap: Instagram Account Hacks, Android Zero-Day, GitHub Worm and More

Your weekly cybersecurity recap: a GitHub supply chain worm, an exploited Android flaw, Instagram account takeovers, and a ...
eWeek

Gemma 4 12B Turns Laptops Into Tiny Supercomputers

Google DeepMind just rolled out Gemma 4 12B, a 12-billion-parameter model that can parse text, images, audio, and video ...
51CTO

Claude Code 扩展避坑指南:90% 的人不知道的六大模块选型技巧,建议收藏

扩展选型的核心原则是”先核心后扩展、先简单后复杂”——从 CLAUDE.md 入手定义项目基本规则,再根据实际痛点逐步添加 Skills(可复用工作流)、MCP(外部服务连接)、Hooks(事件自动化)等扩展,避免盲目配置导致上下文浪费。 Claude Code 扩展选型与配置手册 ...
腾讯网

全是 Web 没 CLI 怎么行:一次把 StarAgent WebTerminal 改造成

阿里妹导读全是 Web,没有 CLI,怎么行?Agent 都会写代码了,远程排障还要人肉点网页、复制命令、盯滚动条,这画面多少有点“地铁老人看手机.jpg”。本文记录一次围绕 StarAgent/Drogo WebTerminal ...
Arabian Post

BadHost flaw puts AI servers at risk

A newly disclosed flaw in Starlette has put Python-based AI services under pressure to patch systems that may expose protected endpoints through manipulated HTTP Host headers. The vulnerability, ...
腾讯网

Claude code云端部署 & 魔改sdk实现http流式调用保姆级教程

阿里妹导读文章内容基于作者个人技术实践与独立思考,旨在分享经验,仅代表个人观点。一、背景在 OpenClaw、Claude Code 等产品出现之前,开发同学实现一个 Agent 的基本思路是:基于 LLM 实现一个 Loop 调用,配合 MCP ...
TheServerSide

OpenAPI, Swagger and Python

The OpenAPI specification, and the Swagger suite of tools built around it, make it incredibly easy for Python developers to create, document and manually test the RESTful APIs they create. Regardless ...
SecurityWeek

Critical, High-Severity Vulnerabilities Patched in Apache MINA, HTTP Server

Apache on Monday released patches for over a dozen vulnerabilities in HTTP Server and MINA, including critical and high-severity issues that could be exploited for remote code execution (RCE). Apache ...