A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.

Vulnerabilities affect cryptographic software that is widely deployed across global infrastructure, enabling remote code ...

The open-source CMS Drupal receives a drag-and-drop editor, ready-made site templates, and optional AI functions for page generation with version 2.0.

One hacked AI agent took down 50 others, proving that agentic AI needs a “DNS for trust” before autonomy turns into chaos.

Keith: John, tell us a little bit about Chainguard and what you’re going to be showing us on DEMO today. John: Definitely.

RedLine, Lumma, and Vidar adapted in 48 hours. Clawdbot's localhost trust model collapsed, plaintext memory files sit exposed ...

As attacks on the operating system grow more serious, the company is teasing a plan to bring “verifiable integrity” to Linux.

New EU cybersecurity law mandates secure design practices for connected devices with penalties up to €15 million or market ...

Founded on pioneering research and industry leadership, ARxIUM® is committed to overcoming the most complex challenges ...

by Kieran Klaassen in Source Code While we’re on our Think Week offsite this week, we’re resurfacing Cora general manager Kieran Klaassen’s work on the theme of compound engineering. In this piece, ...

"In the absence of an agreed-upon process, the community would find itself playing Calvinball at an awkward time." ...

AI Impact examines responsible AI, creative scale, deployment friction and the leaders steering AI adoption.