TMCnet

CodeRabbit Joins the Claude Marketplace

CodeRabbit, the pioneer in AI code reviews, announced its availability on the Claude Marketplace today. Now, Anthropic customers have the ability to apply existing spend commitments toward CodeRabbit ...

GitHub hit with another major attack

A TeamPCP copycat was just spotted hitting thousands of GitHub repos with an infostealer.
Developer Tech

Avrea raises $4.7M to prevent AI code breaking DevOps

AI code generation is breaking DevOps, driving startup Avrea to secure $4.7M to rebuild CI/CD pipelines for automated scaling. Organisations are paying the bill of AI-enabled output volume and ...
InfoQ

Microsoft Announces Azure Linux 4.0, Its First General-Purpose Server Linux Distribution

Microsoft announced Azure Linux 4.0 and Azure Container Linux at Open Source Summit. Azure Linux 4.0 is a Fedora-based ...
Spiceworks on MSN

Did AI write the worm that breached GitHub’s own house?

A single developer. One poisoned extension. Five supply chain surfaces compromised in 48 hours. And a threat group claiming ...
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...
SecurityWeek

Over 5,500 GitHub Repositories Infected in ‘Megalodon’ Supply Chain Attack

The Megalodon supply chain attack poisoned over 5,500 GitHub repositories via automated commits injecting GitHub Actions workflows.
Visual Studio Magazine

VS Code 1.122 Lets BYOK Work Without GitHub Sign-In

Microsoft's May 2026 VS Code update makes BYOK usable in restricted environments while adding agent, browser and issue-reporting updates.