OpenAI says hackers stole some data after latest code security issue

OpenAI said the damage was limited to the employees’ devices, and did not affect user data nor its production systems, and ...
The Silicon Review

OpenAI Data Breach? No User Info Stolen in Library Attack

OpenAI data breach concerns emerged after the TanStack npm supply-chain attack, but no user data was accessed. The Silicon ...
InfoQ

GitHub Enhances CodeQL with Declarative Security Modeling for Faster, More Flexible Analysis

GitHub has introduced a significant update to its CodeQL engine, enabling developers to define custom sanitizers and ...

AWS Rex Is a Big Step for Agentic AI Security, But Not the Final Layer

AWS Rex adds runtime guardrails for agentic AI, but security leaders still need data-layer controls to satisfy compliance and ...
SiliconANGLE

Sonar expands SonarQube with advanced security for third-party open-source code

Code quality testing startup SonarSource SA today announced the upcoming release of SonarQube Advanced Security, a new offering that will extend the company’s analysis capabilities beyond first-party ...
Business Insider

Lovable's security stumble shows one big risk in using AI to code

You're currently following this author! Want to unfollow? Unsubscribe via the link in your email. Lovable's recent security fumble just gave pro software engineers one more reason to be wary of vibe ...
VentureBeat

Anthropic's Claude Code Security is available now after finding 500+ vulnerabilities: how security leaders should respond

Anthropic pointed its most advanced AI model, Claude Opus 4.6, at production open-source codebases and found a plethora of security holes: more than 500 high-severity vulnerabilities that had survived ...
MIT Technology Review

Integrating security from code to cloud

In today’s open-source software environments, businesses need to embrace a new approach to security. In partnership withMicrosoft Azure and AMD The Human Genome Project, SpaceX’s rocket technology, ...
csis.org

AI-Driven Code Analysis: What Claude Code Security Can—and Can’t—Do

Q1: How does Claude Code Security function—and how does it differ from traditional static application security testing (SAST)? A1: Conventional rule-based static analysis uses pattern matching, ...