Noma Labs tricked GitHub's AI agent into leaking private repositories with a crafted issue. The prompt-injection flaw, GitLost, has no code fix.
ActiveState explains how GitHub Actions attack chains can evade traditional CI security scanners, why passing a scan doesn't ...
OpenScience is an AI workbench for scientific research. You give it a goal, and it works through the research loop the way a ...
Note: As we shift focus to Mainnet, we've stopped tracking new CodeAssist participation on Testnet. All historical data remains on-chain. CodeAssist is a completely private and local AI coding ...
Fake CVE exploit repos pull frint and skytext packages to steal researcher credentials, with servers still live as of July 1.