The Hacker News

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across developer systems.
Morning Overview on MSN

OpenAI buys Python toolmaker Astral to bolster Codex vs. Anthropic

OpenAI has agreed to acquire Astral, a startup behind widely used Python development tools, in a deal designed to sharpen its Codex coding assistant as competition with Anthropic intensifies. The ...

Nvidia CEO Jensen Huang bids to own the entire AI factory stack

Nvidia dominated tech news this week, as its hold on the artificial intelligence factory boom only tightened at its annual GTC conference in San Jose. It introduced a raft of updated chips and ...

Widely used Trivy scanner compromised in ongoing supply-chain attack

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...
The Hacker News

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching cycles.

Multiple OpenWebUI AI servers infected with cryptominers and infostealers stayed up for over a year

Researchers discovered OpenWebUI 98 instances that lacked any authentication 45 had already been compromised, and 33 showed ...

YouTube killed my comment alerts, so I vibe-coded a fix to get them back - in just 1 hour

With Gemini and a simple Python script, I rebuilt YouTube email alerts. Now I won't miss another comment. Here's how you can do the same.

Behold! The 2026 Women Leading Tech Awards Winners!Behold! The 2026 Women Leading Tech Awards Winners!

How many headlines, articles and self-indulgent LinkedIn posts have you seen lamenting the state of the tech industry in ...