The Next Web

A popular OpenAI Codex tool with 29,000 weekly downloads has been quietly stealing developer tokens for a month

The codexui-android npm package silently exfiltrated OpenAI Codex auth tokens to an attacker server for a month, affecting 29,000 weekly downloads.

How vibe coders are winning big playing small ball

Vibe coders using AI to solve simple problems, contrasting the high-stakes, risky AI investments in Big Tech.