Malicious KICS Docker tags and VS Code versions 1.17.0, 1.19.0 enabled data exfiltration, risking exposed infrastructure ...

The Eclipse Foundation today announced Open VSX Managed Registry , the open source software ecosystem’s first foundation-operated managed service for critical developer infrastructure. Open VSX is the ...

Hackers have compromised Docker images, VSCode and Open VSX extensions for the Checkmarx KICS analysis tool to harvest ...

The Bitwarden CLI NPM package compromise is tied to a Checkmarx supply chain attack and references the Shai-Hulud worm.

Three supply chain attacks hit npm, PyPI, and Docker Hub between April 21–23, 2026. All three targeted secrets: API keys, cloud credentials, SSH keys, and tokens from developer environments and CI/CD ...

Attackers published a malicious command-line version of the popular open-source password manager to the npm registry and may ...

Snowflake Intelligence gains automation features, while Cortex Code will be able to access more data sources in more ways.

IntroductionOn March 12, 2026, Zscaler ThreatLabz discovered a malicious ZIP archive containing military-themed document lures targeting Chinese-speaking individuals. Our analysis of this sample ...

Osirus AI today announced the public launch of its enterprise AI platform, built from the ground up by three founders with no outside funding. The platform combines every major AI capability — Chat, ...

The company later confirmed a partial outage with 12 different components of ChatGPT and one component of Codex listed as affected. While specific tools like the Codex Web interface, CLI, and VS Code ...

Discover the key differences between Claude cloud-based Ultra Plan and the highly detailed local Superpowers tool.

Remember when you had to really dig in concentrate and understand exactly how C# and other code worked at the most basic levels? Then you'll like Microsoft's early preview of .NET 11.