code
23 articles with this tag
HIGH
HIGH
HIGH
INFO
INFO
INFO
HIGH
INFO
MEDIUM
MEDIUM
MEDIUM
MEDIUM
MEDIUM
HIGH
INFO
INFO
INFO
INFO
INFO
HIGH
HIGH
INFO
INFO
GitHub Breach Traced to Malicious 'Nx Console' VS Code Extension
GitHub Confirms Breach of Internal Repositories Via Malicious VS Code Extension
TeamPCP breached GitHub’s internal codebase via poisoned VS Code extension
The Boring Stuff is Dangerous Now
Why we need a ‘zero-trust for code’ behavioral approach to secure software
Anthropic opens Claude Security public beta for code audits
Don't Panic: The Thymeleaf Template Injection That Only Hurts If You Let It (CVE-2026-40478)
The Cost of Understanding: LLM-Driven Reverse Engineering vs Iterative LLM Obfuscation
CVE-2026-39856 osslsigncode has an Out-of-Bounds Read via Unvalidated Section Bounds in PE Page Hash Calculation
CVE-2026-39855 osslsigncode has an Integer Underflow in PE Page Hash Calculation Can Cause Out-of-Bounds Read
CVE-2026-39853 osslsigncode has a Stack Buffer Overflow via Unbounded Digest Copy During Signature Verification
Git identity spoof fools Claude into giving bad code the nod
Multiples vulnérabilités dans GitLab (09 avril 2026)
Broken by Default: I formally proved that LLM-generated C/C++ code is broken by default — 55.8% vulnerable, 97.8% invisible to existing tools
Your Agent Runs Code You Never Wrote - Why agent isolation is a different problem
How we use Abstract Syntax Trees (ASTs) to turn Workflows code into visual diagrams
AI frenzy feeds credential chaos, secrets spread through code, tools, and infrastructure
Semgrep Multimodal brings AI reasoning and rule-based analysis to code security
SCW Trust Agent: AI tracks AI influence in code to reduce software risk
Supply-chain attack using invisible code hits GitHub and other repositories
GitLab Multiple Vulnerabilities
New Claude tool uses AI agents to find bugs in pull requests
OpenAI joins the race in AI-assisted code security