Supply-chain attack using invisible code hits GitHub and other repositories

Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...

AI is getting scary good at finding hidden software bugs - even in decades-old code

Researchers have found that LLM-driven bug finding is not a drop-in replacement for mature static analysis pipelines. Studies comparing AI coding agents to human developers show that while AI can be ...

Anthropic launches code review for bug detection

Anthropic Code Review Tool: Anthropic has launched Code Review in Claude Code, an AI tool that checks code for bugs before changes merge. It focuses on logic errors, scales with PR size, and provides ...
Gadget Review on MSN

Claude AI discovers 100+ Firefox security flaws in two weeks

Claude AI found 112 Firefox security flaws in 14 days, including 14 critical vulnerabilities now patched in Firefox 148 for ...