InfoQ

Anthropic Accidentally Exposes Claude Code Source via npm Source Map File

Anthropic's Claude Code CLI had its full TypeScript source exposed after a source map file was accidentally included in ...

North Korea’s hijack of one of the web’s most used open source projects was likely weeks in the making

North Korean hackers pushed out malicious updates to a popular open source project by hacking a top developer's computer in a ...
Visual Studio Magazine

Can OpenClaw Challenge Copilot in VS Code?

A proof of concept used OpenClaw's localhost dashboard inside VS Code's integrated browser to compare it directly with Copilot on the same SKILL.md file, finding that OpenClaw delivered broader, more ...
WinBuzzer

Linux 7.0 Cuts PostgreSQL Performance in Half

An AWS engineer has reported PostgreSQL throughput dropping to 0.51x on Linux 7.0 after a kernel preemption change, with no ...
SecurityWeek

In Other News: ChatGPT Data Leak, Android Rootkit, Water Facility Hit by Ransomware

Symantec vulnerability, Android malware, anti-ClickFix mechanism added to macOS, and FBI hack classified as major incident.
The Hacker News

36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants

Strapi plugins exploit Redis and PostgreSQL via postinstall scripts, enabling persistent access and data theft.

Claude Code leak used to push infostealer malware on GitHub

Threat actors are exploiting the recent Claude Code source code leak by using fake GitHub repositories to deliver Vidar ...

Anthropic Accidentally Leaks Claude’s Source Code

After a researcher flagged the issue on March 31, the code spread rapidly across public repositories, raising new questions ...
Microsoft

Cookie-controlled PHP webshells: A stealthy tradecraft in Linux hosting environments

Cookie-gated PHP webshells use obfuscation, php-fpm execution, and cron-based persistence to evade detection in Linux hosting ...
The Hacker News

The State of Trusted Open Source Report

Compliance continues to drive adoption of trusted open source: We saw the same themes from December present here, underscored ...

Anthropic says its leak-focused DMCA effort unintentionally hit legit GitHub forks

“The repo named in the notice was part of a fork network connected to our own public Claude Code repo, so the takedown ...

Datris.ai Launches the First Data Platform Built Around MCP as Open Source

Open-source platform with 30+ MCP tools lets AI agents autonomously create pipelines, query databases, search vector ...