GitHub adds AI-powered bug detection to expand security coverage

GitHub is adopting AI-based scanning for its Code Security tool to expand vulnerability detections beyond the CodeQL static ...
SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$.

Open source isn't a tip jar – it's time to charge for access

Opinion Time and again, I see people begging for companies with deep pockets to fund open source projects. I mean, after all, ...
Dark Reading

GitHub 'OpenClaw Deployer' Repo Delivers Trojan Instead

An AI-assisted campaign is spreading more than 300 poisoned packages for diverse assets ranging from developer tools to game ...
The Hacker News

TeamPCP Hacks Checkmarx GitHub Actions Using Stolen CI Credentials

Two more GitHub Actions workflows have become the latest to be compromised by credential-stealing malware by a threat actor ...

Chainguard is racing to fix trust in AI-built software - here's how

Chainguard is expanding beyond open-source security to protect open-core software, AI agent skills, and GitHub Actions.
InfoQ

GitHub Agentic Workflows Unleash AI-Driven Repository Automation

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Anurag Kale discusses the transition from ...
PC Gamer

Open-source game engine Godot is drowning in 'AI slop' code contributions: 'I don't know how long we can keep it up'

Projects like Godot are being swamped by contributors who may not even understand the code they're submitting. When you purchase through links on our site, we may earn an affiliate commission. Here’s ...
TechCrunch

Former GitHub CEO raises record $60M dev tool seed round at $300M valuation

Former GitHub CEO Thomas Dohmke has raised the largest-ever seed round for a dev tool startup, according to its lead backer, Felicis. The startup, Entire, has raised $60 million at a $300 million ...
The Verge

GitHub adds Claude and Codex AI coding agents

Microsoft-owned GitHub continues to embrace OpenAI and Anthropic AI advances. Microsoft-owned GitHub continues to embrace OpenAI and Anthropic AI advances. is a senior editor and author of Notepad, ...
ProPublica

Our Reporting Showed Washington Ranks Last in Green Energy Growth. Now the State Is Working to Speed It Up.

This article was produced for ProPublica’s Local Reporting Network in partnership with Oregon Public Broadcasting. Sign up for Dispatches to get our stories in your inbox every week. Washington state ...