Developer Tech

Mozilla shows Claude Code malware risk in clean GitHub repo

Mozilla’s 0din team showed how a Claude Code malware GitHub repo attack could use a clean-looking repository to open a ...
SecurityWeek

Researchers Demo New Claude Code Attack Using Harmless-Looking Repositories to Hijack Developer Machines

Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Scientific American

How to spot an AI-generated face, according to science

Training people to pay attention to the right visual cues nearly doubled how accurately they could spot AI-generated faces ...
Visual Studio Magazine

Spring AI 2.0 Goes GA, Giving Java Developers a More Mature AI App Stack

Spring AI 2.0 advances the Java framework for generative AI apps with a Spring Boot 4 baseline, cleaner agentic tooling, Model Context Protocol support and vendor-backed integrations including Azure ...

How Artists Taught An EY Avatar To Be More Human

EY receives 400,000 job applications every year. Selecting the best employees—fairly, and at scale—turned out to require both ...
Tech Times

Multi-Agent AI: Disagreeable Agents Tank Negotiations but Not Code, Study Finds

Multi-agent AI agent personality shapes outcomes in collaborative and negotiation workflows but not in structured coding, ...
XDA Developers on MSN

I built repeatable agentic AI workflows that code without me, and the results surprised me

All my agents needed was a little bit of codified workflows to follow ...

Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...

AI Shopping Gets Complicated at Checkout

AI Impact tracks Wall Street’s AI oversight, DXC’s agent build, AI shopping checkout and India’s place in the AI trade.
Fabbaloo

Text-To-CAD Is Getting More Real, But It’s Not There Yet.

Text-to-CAD tools are beginning to generate useful 3D models from prompts, but the most important missing feature is not geometry — it is intent.
Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...