Shai-Hulud is the third major supply chain attack targeting the NPM ecosystem after the s1ngularity attack and the recent ...

Cursor is an AI-powered fork of Visual Studio Code, which supports a feature called Workspace Trust to allow developers to ...

Dozens of npm libraries, including a color library with over 2 million downloads a week, have been replaced with novel ...

The novel malware strain is being dubbed Shai-Hulud — after the name for the giant sandworms in Frank Herbert’s Dune novel ...

Research by a U.S. security firm points to the country’s leading player in AI providing higher-quality results for some ...

On the surface, the philosophies of open source development and current AI development appear completely opposed. Open source ...

A weakness in the Cursor code editor exposes developers to the risk of automatically executing tasks in a malicious ...

A feature being disabled by default could leave users and their organizations vulnerable to commands that run automatically.

CodeRabbit's $60M funding highlights enterprise need for AI code review platforms, with organizations seeing 25% efficiency ...

Security researchers have identified at least 187 npm packages compromised in an ongoing supply chain attack. The coordinated ...

Qodo, the agentic code quality platform, today announced Qodo Aware, a new flagship product in its enterprise platform that brings agentic understanding and context engineering to large codebases. It ...

The DevOps company's new tool promises to streamline how developers manage software built with artificial intelligence assistance—but it's entering a crowded field.