Threat actors are exploiting the recent Claude Code source code leak by using fake GitHub repositories to deliver Vidar ...

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a ...

Security teams are grappling with a major supply chain attack on Axios, a popular JavaScript library with over 100 million ...

IntroductionOn March 31, 2026, Anthropic accidentally exposed the full source code of Claude Code (its flagship ...

A missed step in a manual deployment process exposed the internal workings of one of AI's hottest coding tools—and briefly ...

The exposure traces back to version 2.1.88 of the @anthropic-ai/claude-code package on npm, which was published with a 59.8MB ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Suspected North Korean hackers have compromised Axios, one of the most widely used JavaScript libraries in American software ...

In order to spread Vidar information-stealing malware, threat actors are taking advantage of the recent Claude Code source ...

Anthropic's accidental leak has exposed Claude AI's internal code, revealing several unreleased features like Buddy, KAIROS ...

After Garry Tan touted his agentic coding output, a developer found inefficiencies, code bloat, and rookie mistakes lurking ...

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...