Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a cross-platform RAT. Axios sits in 80% of cloud environments. Huntress confirmed ...

Anthropic says it accidentally leaked the source code for Claude Code, which is closed source, but the company says no ...

The leak provides competitors—from established giants to nimble rivals like Cursor—a literal blueprint for how to build a ...

The D.C. Council has advanced a so-called “single-stair” policy that lawmakers and advocates say would facilitate housing ...

A hacker took over an account belonging to the lead maintainer of the JavaScript library, Axios, which is used to handle HTTP requests, as reported by Cybernews. Security researchers found that ...

After details of a yet-to-be-announced model were revealed due to the company leaving unpublished drafts of documents and ...

Anthropic has accidentally exposed Claude Code's full 512,000-line TypeScript source via an npm source map, revealing ...

The full breadth of this incident is still unclear, but given the popularity of the compromised package, we expect it will ...

More open-source developers are finding that, when used properly, AI can actually help current and long-neglected programs.

Security firm Socket advised developers to check dependencies for affected Axios versions and remove or roll back compromised ...

Anthropic is scrambling to contain the leak, but the AI coding agent is spreading far and wide and being picked apart.

Anthropic旗下专有的 Claude Code 命令行工具（CLI）完整 TypeScript 源码，疑似因 npm 包配置失误，经由其 npm 注册表意外泄露。 事件最早由安全研究员邵超凡（Chaofan Shou）披露，他在社交平台 X ...