InfoQ

Google ADK for Java 1.0 Introduces New App and Plugin Architecture, External Tools Support, and More

Google's Agent Development Kit for Java reached 1.0, introducing integrations with new external tools, a new app and plugin ...
The Hacker News

Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain

Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...

Sustainable sushi: How to forage uni from California’s coastal tide pools

Peer into the water at the tide pools along the Sonoma Coast, and you’ll see what appears to be an alien invasion of bright ...

Bitwarden CLI npm package compromised to steal developer credentials

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects.

Ubuntu Resolute Raccoon spits out Xorg, but still lets you run X11 apps

This release of Ubuntu Server brings fresh versions of multiple developer tools. Java gets OpenJDK 25 LTS with CRaC, and ...

The ‘Creator Of Clipping’ Who Powers Stake’s Viral Machine

Anthony Fujiwara's clipping army delivers billions of views for a fraction of ad costs. It helped build Stake's empire, and ...
The Hacker News

Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens

Self-propagating npm worm steals tokens via postinstall hooks, impacting six packages and expanding supply chain attacks.