CSO Online

Hugging Face Transformers RCE flaw enables stealthy compromise via AI model configs

With over 2.2 billion installs, the flawed Python package offers attackers a huge blast radius, including silent access to ...

XBOW tests Anthropic's Mythos Preview for offensive security

Anthropic's Mythos Preview was highly effective at finding vulnerability candidates, especially when analyzing source code.
InfoWorld

Pyrefly 1.0: A fast, forward-looking Python linter

Meta’s Rust-powered linter and type checker for Python pairs blazing speed with advanced and innovative features.

I've tested so many desktop AI tools, but Hermes with Ollama is my new favorite - here's why

I've tested so many desktop AI tools, but Hermes with Ollama is my new favorite - here's why ...
Columbia Journalism Review

Scraper Factories

Writing a scraper or two for a story is (usually) a fairly straightforward task for a data journalist who knows a bit of code ...
Meduza

Russia’s federal censor denies blocking Python’s package index as developers scramble for workarounds

On Monday, Russian users found they could no longer reach PyPI, the package repository that Python developers rely on for ...
MUO on MSN

I asked Gemini, Claude, and ChatGPT to debug the same Python error, and only two explained what actually broke

I asked Claude, ChatGPT, and Gemini to debug a Python error, and the difference was too noticeable to ignore.
The Hacker News

LiteLLM Flaw CVE-2026-42271 Exploited in the Wild, Chains to Unauthenticated RCE

CISA added CVE-2026-42271, a high-severity LiteLLM command injection flaw, to its KEV catalog after evidence of active ...

Strativerse.Ai Launches AI Solution for Automated Strategy Development

Strativerse.ai has launched its AI solution for automated strategy development, introducing a platform designed to help ...
The Hacker News

Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues

Microsoft confirms it temporarily removed GitHub repos after Miasma worm compromised 73 of its open-source projects to inject ...

GitHub disables Microsoft repos pushing password-stealing malware

Microsoft removed 73 repositories across its Azure, microsoft, Azure-Samples, and MicrosoftDocs organizations on GitHub, ...
Biometric Update

Notre Dame researchers release open-source iris recognition tools built for NIST testing

The work addresses a gap in biometric testing, as NIST’s IREX has focused primarily on closed-source commercial iris ...