AWS has published further details of an incident involving one of its artificial intelligence development tools, which saw an unknown threat actor inject a malicious prompt into a source code ...

Black Duck®, the leader in AI-powered application security, today released the 2026 Open Source Security and Risk Analysis (OSSRA) report, revealing the largest increases in open source security, ...

A series of abusive messages received by users of the Codeberg open-source repository has been blamed on a ‘far right’ campaign of harassment. The abusive messages were the work of a single user, who ...

DeepSeek said it would double down on open-source technology with a fresh commitment to make five of its code repositories public, as the Chinese start-up continues to draw worldwide attention amid ...

Documenting code can be dull, but explaining the source code of a complex project is hard for AI to get right Google has previewed Code Wiki, an AI project that aims to document code in a repository ...

Claude Code would execute hidden code from untrusted projects before any user confirmation, Check Point reports.

PyPI, a vital repository for open source developers, temporarily halted new project creation and new user registration following an onslaught of package uploads that executed malicious code on any ...

Internal source code and data belonging to The New York Times was leaked on the 4chan message board after being stolen from the company's GitHub repositories in January 2024, The Times confirmed to ...

Mercedes-Benz accidentally exposed a trove of internal data after leaving a private key online that gave “unrestricted access” to the company’s source code, according to the security research firm ...