Meta has indefinitely paused work with $10B AI data startup Mercor after a LiteLLM supply chain attack exposed training ...

Or, why the software supply chain should be treated as critical infrastructure with guardrails built in at every layer.

A growing body of academic research warns that AI-assisted “vibe coding,” where language models assemble software from ...

Compliance continues to drive adoption of trusted open source: We saw the same themes from December present here, underscored ...

More open-source developers are finding that, when used properly, AI can actually help current and long-neglected programs.

A cyber attack hit LiteLLM, an open-source library used in many AI systems, carrying malicious code that stole credentials ...

Thinking about learning Python coding online? It’s a solid choice. Python is pretty straightforward to pick up, ...

Threat group TeamPCP exploited credentials stolen in the Trivy breach to push malicious versions of LiteLLM to PyPI, exposing ...

Mozilla AI has launched cq, an open-source platform described as Stack Overflow for AI agents, sparking immediate security ...

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...

The open-source tool promises hands-free automation, but users may find it costly, complex, and less practical than expected.

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...