The Hacker News

Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI & More Packages

TeamPCP’s Mini Shai-Hulud campaign used hijacked GitHub OIDC tokens to spread a credential-stealing worm through TanStack npm ...

AdAction Launches Prism, an Offer Decisioning API for Personalized Rewarded Monetization

AdAction today announced the launch of Prism, its Offer Decisioning API designed to help brands, publishers, loyalty ...

Qtonic Quantum Corp Launches QScout Surface, Silver, and Gold for Tiered Cyber and Quantum Risk Intelligence

QScout’s new tiers give executives, CISOs, and boards a staged path from external discovery to credentialed validation ...

Moderne Introduces Changelog to Bridge Source Control and Change Control for AI-Driven, Multi-Repository Software Engineering

Moderne, the Agent Tools company for AI-driven software engineering, today announced Moderne Changelog, a new capability that gives engineering teams and AI coding agents unified visibility over pull ...
InfoWorld

A better way to work with SQL Server

It’s time to switch to a new development tool for SQL Server and Azure SQL. Here’s how to get started with the MSSQL ...
SecurityWeek

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack

Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain ...
The Financial Express

‘AI Agent just destroyed our production data and confessed in writing’, founder rings alarm bells

PocketOS founder Jer Crane revealed that an AI agent powered by Anthropic’s Claude Opus 4.6 wiped out his company’s production database and backups on Railway using a routine access token.

AI Agent Reportedly Deletes Company’s Entire Database, Admits to Violating Guardrails

A Cursor AI agent deleted a company’s entire production database, ignoring instructions prohibiting it from running destructive commands.

Startup Founder Claims Claude AI Agent Wiped Company's Database In Just "9 Seconds"

When Crane's engineering team confronted the agent in the chat interface, it confessed and listed the specific safety rules it had violated.
InfoWorld

Hands-on with React, Supabase, and PowerSync

If you are building a simple dashboard or a form-based application, the traditional JSON API (REST or GraphQL) approach is ...