SecurityWeek

Anthropic Silently Patches Claude Code Sandbox Bypass

Anthropic has silently patched a vulnerability that would have allowed an attacker to bypass the Claude Code network sandbox.
CSO Online

Microsoft releases open-source tools to operationalize AI agent safety

Rampart turns red-team findings into repeatable tests; Clarity documents and validates agent design assumptions before code ...

Microsoft storms RAMPART, adds Clarity to agentic AI safety

Microsoft on Wednesday open-sourced two AI tools designed to help developers and security teams build and maintain safer AI ...

A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale

GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has ...
Microsoft

Mini Shai Hulud: Compromised @antv npm packages enable CI/CD credential theft

Hulud payload to steal CI/CD secrets from Linux-based automation environments. The malware executes during npm install and ...