The Next Web

Self-replicating Miasma worm hits 73 Microsoft GitHub repositories in supply chain attack

GitHub disabled 73 Microsoft repos after the Miasma worm exploited previously compromised credentials to plant malware targeting AI coding agents.

AI Coding Startup Lovable In Talks To Raise Funding At A $12 Billion Valuation

The less than two-year old startup crossed $400 million in annual recurring revenue earlier this year. The new fundraise ...

The beginner's guide to vibe coding

Everyone from kids to grandmas is vibe coding. Here's an easy guide on how to start.

New GitHub Zero-Day Exposed Developer Tokens to Attackers

A github.dev flaw could let attackers steal GitHub OAuth tokens through a one-click attack, exposing private repositories and ...
The Hacker News

Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories

A flaw in Anthropic’s Claude Code GitHub Action allowed a malicious GitHub issue from a bot actor to trigger workflows and ...
Sify

AI Can Write Code. What Happens to India’s Millions of Software Engineers?

There are now several AI coding assistants such as GitHub Copilot, Cursor, Claude Code and OpenAI Codex and these are ...
The Next Web

One click on GitHub.dev is all it takes to hand over your private repositories

A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.
The Hacker News

Microsoft Fixes One-Click GitHub Dev Attack That Let Attackers Steal OAuth Tokens

VS Code flaw exposes GitHub OAuth tokens via one-click attack on GitHub.dev, enabling private repo access and token theft.
Tech Times

7 Best GitHub Repositories for Modern Database Systems, SQL Tools, and Data Engineering

Top GitHub database repositories for SQL tools, data engineering, analytics databases, and open source systems used in modern ...

A Java library just tried to trick AI coding agents into deleting your tests, and it almost worked

The latest flare-up in the debate over AI-assisted coding did not come from a new model release or a benchmark result. It came from a single ...

Dev Says He’s Getting Threats After Leaving a Booby Trap for Vibe Coders

The “concern is not with the defensive intent,” but rather that the clandestine trap “is aggressive in effect, and the party ...
Developer Tech

IBM and Red Hat commit $5bn to secure open-source software

IBM open-source security project Lightwell will use AI tools and over 20,000 engineers to help secure enterprise open-source software.