Sonatype Releases Q1 2026 Open Source Malware Index: Trust Abuse Most Successful Attack Vector

Backed by Sonatype's industry-leading security research team, Sonatype Repository Firewall helped customers prevent 136,107 open source malware attacks in Q1. To explore the full findings from the Q1 ...

I finally quit Chrome for an open source browser, and I'm not looking back

I have eight years of experience covering Android, with a focus on apps, features, and platform updates. I love looking at ...
GitHub

Claude Code Skills & Plugins — Agent Skills for Every Coding Tool

235 production-ready Claude Code skills, plugins, and agent skills for 12 AI coding tools. The most comprehensive open-source library of Claude Code skills and agent plugins — also works with OpenAI ...
DMR News

Harper Launches 5.0: Fully Open-Source Runtime for Building and Deploying Cost-Efficient Agents

Harper, the unified runtime for agentic engineering, today announced the release of Harper 5.0. The release makes the ...
Geopolitical Monitor

Distributed Risk: Open-Source Software as Strategic Infrastructure

The 2024 XZ incident illustrates how open-source software (OSS) has become strategic infrastructure in the global economy, ...
Pocket Tactics

Navy Tycoon codes

Whether you prefer a bit of building or commanding the troops, Navy Tycoon codes can offer you a little bit of an edge over those around you. With these codes, you'll get the likes of in-game currency ...
XDA Developers on MSN

Claude Code's leaked source code revealed some features Anthropic wasn't ready to share yet

Oops. A 60MB source map file just leaked Anthropic's entire roadmap.
Morning Overview on MSN

Hackers hide credit-card skimmer code inside 1×1-pixel SVG images

A credit card skimmer campaign discovered in early 2025 and still actively tracked as of April 2026 has compromised an ...

Milla Jovovich Goes Open Source Guns Blazing With Top AI Memory Code

The open source community has already started toimprove the code Milla posted of the best AI memory system in the world. That ...

Max severity Flowise RCE vulnerability now exploited in attacks

Hackers are exploiting a maximum-severity vulnerability, tracked as CVE-2025-59528, in the open-source platform Flowise for ...
Hackaday

This Week In Security: The Supply Chain Has Problems

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

Hackers slipped a trojan into the code library behind most of the internet. Your team is probably affected

Attackers stole a long-lived npm token from the lead axios maintainer and published two poisoned versions that drop a cross-platform RAT. Axios sits in 80% of cloud environments. Huntress confirmed ...