New GitHub Copilot App Aims to Tame Chaos in Agent-Driven Development

At Microsoft Build, GitHub unveiled a desktop app that bundles parallel AI agent sessions and accompanies the CI/CD process ...

CISA Flags 2-Year-Old Oracle WebLogic Vulnerability as Actively Exploited

CISA added Oracle WebLogic flaw CVE-2024-21182 to its KEV catalog, giving federal agencies until June 4 to patch exposed ...
The Next Web

One click on GitHub.dev is all it takes to hand over your private repositories

A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.

Build 2026: Microsoft Announces GitHub Copilot App

The GitHub Copilot desktop app is like a central dashboard for managing AI agents and interacting with GitHub.
Nature

Thou shalt share your data

In many fields, the routine while writing up a paper is to deposit supporting data—be it genome sequence, microarray data or protein structure—into a community-endorsed public repository, and then to ...
Microsoft

Preinstall to persistence: Inside the Red Hat npm Miasma credential-stealing campaign

Microsoft Threat Intelligence identified a large-scale npm supply chain attack affecting 32 maliciously modified packages across more than 90 versions under the @redhat-cloud-services npm scope. The ...