The AI coding craze gave GitHub its best month ever, executive tells employees

Usage of the company's Copilot AI coding tool surged after GitHub changed how it bills customers, the executive said.

Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...
InfoWorldOpinion

Open source grapples with agentic coding

Open source maintainers are right to be concerned about AI slop, but banning AI-generated code outright is a huge mistake.
The Hacker News

GitHub Updates actions/checkout to Block Common Pwn Request Attack Patterns

GitHub’s actions/checkout v7 now blocks risky fork PR checkouts in privileged workflows to reduce common pwn request attacks.
ADTmag

Spring Tools 5.2.0 Adds Experimental Claude Code Plugin and Spring AI Support

The release includes an embedded MCP server that exposes Spring project analytics to AI coding assistants, along with first-class support for Spring AI and automated property refactoring.
XDA Developers on MSN

I use a single PC for my coding, gaming, and self-hosting tasks without them sabotaging each other

Running a dev station, gaming rig, and home server on the same machine is a lot easier than you think ...
The Phnom Penh Post

AI-powered vibe coding is gaining ground in Nepal

A fast-growing software approach known as vibe coding, where artificial intelligence is used to generate applications from simple ...

Apple takes over Swift Package Index, vows to remove GitHub dependency

The Swift Package Index (SPI), a search engine for open source packages for the Swift programming language, is now part of ...

Microsoft fixes AutoGen Studio flaw that enabled code execution

A vulnerability chain dubbed AutoJack in Microsoft's AutoGen Studio interface for prototyping AI agents could let attackers ...
The Hacker News

Cordyceps CI/CD Flaws Expose 300+ GitHub Repositories to Supply-Chain Attacks

Researchers found Cordyceps CI/CD flaws affecting 300+ repositories, enabling code execution, credential theft, and supply ...
Tech Times

Karpathy CLAUDE.md Grows to Ten Rules: New Self-Check Protocol for AI Coding Loops

Karpathy CLAUDE.md ten rules: a document attributed to Andrej Karpathy began circulating Friday, adding six agent self-check ...
XDA Developers on MSN

Local LLMs finally beat cloud AI for coding, automation, and brainstorming — here's which ones I use

There's always a local model that can replace your AI subscription ...