Anthropic accidentally exposed roughly 512,000 lines of proprietary TypeScript source code for its AI-powered coding agent ...

I keep reaching for my phone, and it’s not for scrolling.

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

The new family of AI models can run on a smartphone, a Raspberry Pi, or a data centre, and is free to use commercially.

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Google Threat Intelligence Group warns of active supply chain attack on npm’s Axios library Malicious dependency ...

A routine software update for Anthropic's Claude Code tool accidentally leaked its entire source code, sparking rapid ...

One key addition is support for rendering inline graphics such as Sixel images, allowing advanced command-line tools like the Windows Package Manager (WinGet) to display app ...

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...

Uploads bring prompts and responses, but not project files, attachments, or AI-generated images. The rollout skips the UK, ...

Language package managers like pip, npm, and others pose a high risk during active supply chain attacks. However, OS updates ...