Or, why the software supply chain should be treated as critical infrastructure with guardrails built in at every layer.
OpenAI revoked its macOS signing certificate after a malicious Axios dependency incident on March 31, 2026, preventing potential software misuse.
Anthropic exposed Claude Code source on npm, revealing internal architecture, hidden features, model codenames, and fresh ...
Andrej Karpathy, the former Tesla AI director and OpenAI cofounder, is calling a recent Python package attack \"software horror\"—and the details are ge.
A cyber attack hit LiteLLM, an open-source library used in many AI systems, carrying malicious code that stole credentials such as environment variables, SSH keys, and passwords.
Cryptopolitan on MSN
Axios supply chain attack raises risk to crypto wallets
Up to four npm packages on Axios were replaced with malicious versions, in one of the most sophisticated supply chain attacks ...
Compliance continues to drive adoption of trusted open source: We saw the same themes from December present here, underscored ...
Anthropic has exposed Claude Code's source code, with a packaging error triggering a rapid chain reaction across GitHub and ...
This technique can be used out-of-the-box, requiring no model training or special packaging. It is code-execution free, which ...
The incident has been described as one of the most significant code leaks in recent times, involving the exposure of Claude ...
Google has launched TorchTPU, an engineering stack enabling PyTorch workloads to run natively on TPU infrastructure for ...
11dOpinion
AI recruiting biz Mercor says it was 'one of thousands' hit in LiteLLM supply-chain attack
AI hiring startup Mercor confirmed it was "one of thousands of companies" affected by the LiteLLM supply-chain attack as the ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results