High-severity flaws in the Chainlit AI framework could allow attackers to steal files, leak API keys & perform SSRF attacks; ...

Three vulnerabilities in Anthropic’s MCP Git server allow prompt injection attacks that can read or delete files and, in some ...

Security researchers uncovered two vulnerabilities in the popular Python-based AI app building tool that could allow ...

Update Chainlit to the latest version ASAP Two "easy-to-exploit" vulnerabilities in the popular open-source AI framework ...

Vulnerabilities in Chainlit could be exploited without user interaction to exfiltrate environment variables, credentials, ...

FileWizard lets you convert documents, extract text, transcribe audio and manage files on your own computer without uploading ...

Researchers with Cyata and BlueRock uncovered vulnerabilities in MCP servers from Anthropic and Microsoft, feeding ongoing security worries about MCP and other agentic AI tools and their dual natures ...

I tried four vibe-coding tools, including Cursor and Replit, with no coding background. Here's what worked (and what didn't).

New WhatsApp Web attack spreads self-propagating ZIP files containing Astaroth banking malware through trusted conversations.

A spear-phishing campaign tied to the Democratic People's Republic of Korea (DPRK) uses trusted Microsoft infrastructure to ...

Familiar bugs in a popular open source framework for AI chatbots could give attackers dangerous powers in the cloud.

WIRED spoke with Boris Cherny, head of Claude Code, about how the viral coding tool is changing the way Anthropic works.