Sign of the times: An AI agent autonomously wrote and published a personalized attack article against an open-source software ...

An AI agent got nasty after its pull request got rejected. Can open-source development survive autonomous bot contributors?

Belligerent bot bullies maintainer in blog post to get its way Today, it's back talk. Tomorrow, could it be the world? On Tuesday, Scott Shambaugh, a volunteer maintainer of Python plotting library ...

The work of Open Source Mano has been showcased in February at the SNS4SNS 2026 second edition of the ETSI Software and Standards for Smart Networks and Services event (SNS4SNS), with a dedicated ...

North Korea-linked Lazarus campaign spreads malicious npm and PyPI packages via fake crypto job offers, deploying RATs and ...

This desktop app for hosting and running LLMs locally is rough in a few spots, but still useful right out of the box.

Scott Shambaugh maintains matplotlib, a Python plotting library downloaded about 130 million times a month. Like many open ...

Researchers have revealed that bad actors are targeting dYdX and using malicious packages to empty its user wallets.

What sets Codeflash apart, he argues, is that it operates not just as a one-time audit or consultancy (as many optimization firms do) but as a continuous engine: “Codeflash has beaten us at optimizing ...

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX developers and backend systems and, in some cases, backdoored devices, ...

AutoDiscovery, formerly AutoDS, is now available in AstaLabs, part of the scientific AI ecosystem from Ai2 named Asta that allows the analysis, summarization and search of more than 108 million ...

New platform indexes over 50,000+ open source projects with daily AI-powered updates, positioning itself as the go-to ...