News

CSO Online

Warning: Hackers have inserted credential-stealing code into some npm libraries

Dozens of npm libraries, including a color library with over 2 million downloads a week, have been replaced with novel ...

Self-propagating supply chain attack hits 187 npm packages

Security researchers have identified at least 187 npm packages compromised in an ongoing supply chain attack. The coordinated ...
Security Boulevard

Self-Replicating Worm Compromising Hundreds of NPM Packages

Hulud" has compromised hundreds of packages in the npm repository with a self-replicating worm that steals secrets like API key, tokens, and cloud credentials and sends them to external servers that ...

With Vibe Coding AI tools generating more code than ever before, enterprises need quality assurance tools to make sure it all works - here's how to evaluate and choose the ...

CodeRabbit's $60M funding highlights enterprise need for AI code review platforms, with organizations seeing 25% efficiency gains.

CodeRabbit raises $60M, valuing the 2-year-old AI code review startup at $550M

The round, which brought the two-year-old startup’s total funding to $88 million, was led by Scale Venture Partners.

Microsoft favors Anthropic over OpenAI for Visual Studio Code

Microsoft is adding automatic AI model selection to its Visual Studio Code editor that will automatically pick the best model ...

Microsoft turns to Anthropic's AI for Visual Studio Code, raising eyebrows about OpenAI ties

Microsoft is signaling a shift in its AI priorities, favoring Anthropic's Claude Sonnet 4 over OpenAI's GPT-5 models in its flagship developer tool, Visual Studio Code.