An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...
The smartest way to use AI may not be letting it interact with your files, but asking it to write software that handles them ...
Microsoft has cut off access to dozens of its open source projects hosted on GitHub as it investigates how hackers apparently breached the projects and injected password-stealing malware into the code ...
Dozens of cryptographically verified open source packages from Microsoft were compromised late last week to add advanced credential-stealing code that was triggered when developers opened them in AI ...
一个基于 Python + PySide6 的 Web 安全巡检桌面工具。它面向自有资产、本地靶场和明确授权环境,用于检查常见 Web 路径 ...
A security researcher found a flaw in Anthropic's Claude Code GitHub Action that let an attacker take over vulnerable public repositories running it, with nothing more than a single opened GitHub ...
A security researcher has released exploit code for a Visual Studio Code (VS Code) zero-day vulnerability that allows attackers to steal GitHub authentication tokens by tricking users into clicking a ...
Today, developers and security teams are caught in growing tension. AI is accelerating development and introducing new issues around insecure code, opaque models, data exposure, and compliance. Add ...
A set of automated tests for different network protocols, DNS providers, websites accessibility and more. Ready to be analyzed with AI.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results