InfoQ

Argo CD 3.5 Tightens Supply Chain Security with Internal mTLS and Source Integrity

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
The Hacker News

Cordyceps CI/CD Flaws Expose 300+ GitHub Repositories to Supply-Chain Attacks

Researchers found Cordyceps CI/CD flaws affecting 300+ repositories, enabling code execution, credential theft, and supply ...
Dark Reading

'Cordyceps': Mushrooming Malicious Pull Requests Threaten Developer Workflows

By targeting the automated workflows around repositories with targeted pull requests, attackers can potentially target ...
CNET

How to Download the iOS 27 Developer Beta and Try the New Siri AI

Nasha is a Managing Editor for CNET, overseeing our sleep and wellness verticals. She is a nutrition, mental health, fitness and sleep science enthusiast. Her passion for mindful and holistic ...
Mashable

How to download iOS 27, iPad OS 27, and macOS 27 Golden Gate developer betas right now

Shortly after the big WWDC keynote wrapped, Apple rolled out the first betas for its latest generation of operating systems. First, you'll need to be enrolled in the Apple Developer Program. If you're ...
GitHub

BorgBackup Server - Secure Remote Backup Repositories

BorgBackup Server helps manage secure, deduplicated remote backup repositories with encryption, retention, and reliable restores. What is BorgBackup Server? BorgBackup Server helps manage secure, ...
techtimes

7 Best GitHub Repositories for Modern Database Systems, SQL Tools, and Data Engineering

GitHub hosts a wide range of database repositories that support developers working with database systems, SQL tools, and modern data engineering workflows. These open source database tools help power ...
CSOonline

Infected Red Hat npm packages expose developer credentials

Researchers have uncovered a new Shai-Hulud malware variant that now also gathers Google Cloud and Azure identities, an addition to its previous credential-snatching behavior. Developers who pulled ...
TechCrunch

CrowdStrike and Google take down botnet used by hackers to target open source software developers

CrowdStrike, working with Google and Shadowserver, a nonprofit organization that scans and monitors the internet for cyberattacks, took down a botnet that cybercriminals used to push malware and steal ...
TechCrunch

GitHub says hackers stole data from thousands of internal repositories

GitHub, the popular developer platform owned by Microsoft, confirmed it was hacked and attackers had stolen data from around 3,800 internal code repositories. The code hosting and sharing giant said ...
Morningstar

ADEX Publishes Analysis of XCSSET Malware: Research Details How Active Infection Spreads Silently Through Xcode Projects, GitHub Repositories, and Developer Credentials

LIMASSOL, Cyprus, May 19, 2026 /PRNewswire/ -- The ADEX security team has released a detailed technical case study documenting a live XCSSET infection detected, captured, and analyzed within a client ...