North Korea-linked hackers have upgraded the InvisibleFerret malware to bypass script-based security tools, converting its Python code into compiled modules that are harder for defenders to inspect ...

Researchers who found the bug warn that its Moderate rating understates a threat reaching across LLM gateways, MCP servers ...

OpenSSF Community Day North America ? The Open Source Security Foundation (OpenSSF), a cross-industry initiative of the Linux Foundation focused on sustainably securing open source software, today ...

V2X2MAP is an open-source receiver and live map for ITS-G5 / V2X traffic working with ESP32-C5 board over 5.9 GHz WiFi.

The OWASP-backed tool scans JavaScript and TypeScript lockfiles locally, aiming to help developers catch and remediate dependency risks before CI failures.

Open source robotics AI platform LeRobot surpassed 58,000 community datasets in 2026 — 50x growth in under a year — making it the largest dataset category on Hugging Face and signaling a ...

CNCF graduation, Microsoft tooling updates and cloud-provider support show broader OpenTelemetry adoption across developer platforms.

また、同社は1000以上のオープンソースプロジェクトもスキャンし、6202件の高・重大リスク脆弱性を発見。そのうち1587件は外部の専門機関による検証済みで、実際に3900件近くが有効な高リスク脆弱性と推定されている。パッチ対応は進行中で、現時点では ...

Stolen credentials produced valid Sigstore certificates, clearing 633 malicious npm packages — one of seven developer tool ...

CrowdStrike, Google and the Shadowserver Foundation worked together to take down a botnet that poisoned over 300 GitHub ...

Benchling today launched Benchling Automation, a hardware-agnostic system that connects lab instruments, automation systems, and scientific records into a single, continuously updated loop. Until now, ...

ソフトウェアの脆弱(ぜいじゃく)性を探す作業はこれまで、専門知識を持つセキュリティ研究者がコードを読み、問題が本当に悪用可能かどうかを検証するという時間のかかる作業でした。しかし、Anthropicが開発した高性能AI「Claude Mythos Preview」は、脆弱性の発見だけでなく実際に悪用できるかどうかの検証まで高い精度で行えるとされています。Claude Mythos Previewの ...