Multiple SAP npm packages were compromised in a supply chain attack designed to steal developer credentials and tokens.

Microsoft officially announced TypeScript 7.0 Beta on April 21, 2026. The company says TypeScript 7.0 is often 10 times faster than 6.0. The beta ships through @typescript/native-preview@beta and tsgo ...

VS Code extensions since Dec 21, 2025 fuel GlassWorm v2, installing cross-IDE malware and stealing credentials.

Researchers say the campaign targeted developer credentials and cloud secrets while abusing trusted publishing and AI coding ...

The threat actor seeding the Open VSX code marketplace with fraudulent extensions that download the GlassWorm malware has ...

Several npm packages for SAP's cloud application development ecosystem have been compromised as TeamPCP's supply chain ...

Say “publish this as a website” and your AI agent handles the rest: it builds the file, uploads it, and hands you a ...

Chainguard, the trusted source for open source, today announced a partnership with Cursor, the leading multi-model AI coding platform, to secure the next generation of agentic software development.

The least exciting page in your browser is also the easiest one to vibe-code.

Jellyfin is a befitting choice for a home media streaming server, but it's dull without these plugins.

A practical guide to Perplexity Computer: multi-model orchestration, setup and credits, prompting for outcomes, workflows, ...

The new version of the programming language with a Go backend is said to be ten times faster than its predecessor, which used ...