JFrog has uncovered GhostClaw, a fake OpenClaw npm package that stole Keychain passwords, cloud credentials, and crypto wallets from 178 macOS developers.

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across developer systems.

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...

Zerion API integrated the x402 protocol. Any AI agent with a crypto wallet can now make an API call, pay 0.01 USDC on Base, and get back structured wallet data: portfolio balances, DeFi positions, ...

Boost Security Developer Endpoint Security has been engineered to address this gap by securing the developer environment directly, embedding protection into the tools, agents and workflows where code ...

An API gateway is like the main entrance and security guard for all these conversations. But, the tech world moves fast, and just having any old gateway isn’t really going to cut it anymore. You need ...

Microsoft used Nvidia's GTC conference this week to roll out a series of enterprise AI announcements spanning agent infrastructure, real-time voice interactions and next-generation GPU deployments.

Another great update for FFmpeg.

AI-driven development fueled a surge in developer secrets leaks last year, with nearly 29m credentials discovered on public GitHub repos.

A new open-source tool called Betterleaks can scan directories, files, and git repositories and identify valid secrets using default or customized rules.

Infosecurity spoke to several experts to explore what CISOs should do to contain the viral AI agent tool’s security vulnerabilities ...

We’ve had a look around at what’s out there for 2026, focusing on places that offer a decent free api hosting experience. Whether you’re just starting out or need a solid place for a project, there ...