The Hacker News

Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Packages

TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm ...
SecurityWeek

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack

Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain ...
InfoQ

How GitHub Is Securing Agentic Workflows in Modern CI CD Systems

GitHub detailed a defense-in-depth security architecture for agentic workflows in CI/CD pipelines, focusing on isolation, ...
Microsoft

Defense at AI speed: Microsoft’s new multi-model agentic security system tops leading industry benchmark

Today Microsoft is announcing a major step forward in AI-powered cyber defense: a new multi-model agentic scanning harness ...
Breaking Defense

‘Insatiable appetite’ for AI: Maven usage surged for strikes on Iran, Pentagon AI chief says

DoD users tore through 20 billion token a day as Palantir’s Maven Smart System was "leveraged" to help plan and coordinate ...
Visual Studio Magazine

The Next Generation of Developer Productivity with GitHub Copilot and Visual Studio

Simona Liao and Leah Tran, product managers at Microsoft, discuss how GitHub Copilot in Visual Studio has evolved from a code completion tool into an agent-driven development workflow -- and share ...