Gartner issued a same-day advisory after Anthropic leaked Claude Code's full architecture. CrowdStrike CTO Elia Zaitsev and ...

Earlier today, a Claude Code release included some internal source code. No sensitive customer data or credentials were ...

TeamPCP is the likely cyber threat actor behind attacks on Trivy, Checkmarx, and the LiteLLM AI library — and all signs point ...

Cisco has suffered a cyberattack after threat actors used stolen credentials from the recent Trivy supply chain attack to ...

The exposure traces back to version 2.1.88 of the @anthropic-ai/claude-code package on npm, which was published with a 59.8MB ...

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across ...

GitHub is adopting AI-based scanning for its Code Security tool to expand vulnerability detections beyond the CodeQL static ...

According to the Los Angeles Times, the bad release exposed roughly 1,900 files and about 512,000 lines of TypeScript tied to ...

IntroductionOn March 31, 2026, Anthropic accidentally exposed the full source code of Claude Code (its flagship ...

For those who recall the debate surrounding Microsoft Recall not long ago, Claude Code's capture of activity is similar.

Aqua Security’s Trivy vulnerability scanner was compromised in a supply chain attack, leading to information-stealing ...

Four years after Log4Shell, 14% of affected artifacts are still being downloaded in vulnerable versions. OpenSSF's Chief ...