The Hacker News

Researchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks

More than 30 security flaws in AI-powered IDEs allow data leaks and remote code execution, showing major risks in modern ...

Sonatype debuts guide to secure AI-assisted software development

Software supply chain management firm Sonatype Inc. today announced the launch of Sonatype Guide, a new developer tool that ...

Admins and defenders gird themselves against maximum-severity server vuln

According to Wiz and fellow security firm Aikido, the vulnerability, tracked as CVE-2025-55182, resides in Flight, a protocol ...
InfoWorld

10 MCP servers for devops

Tap these Model Context Protocol servers to supercharge your AI-assisted coding tools with powerful devops automation ...
InfoWorld

All I want for Christmas is a server-side JavaScript framework

Could 2026 be the year of the beautiful back end? We explore the range of options for server-side JavaScript development, ...
Developer Tech

Sonatype Guide brings DevSecOps to AI coding

Sonatype Guide aims to secure AI coding workflows, aligning generation speed and increased productivity with DevSecOps safety ...

Claude Code made an astonishing $1B in 6 months - and my own AI-coded iPhone app shows why

My complex app, built entirely through agentic coding, reveals the true force multiplier transforming how developers create products at astonishing speed.
DataBreachToday

CISA Warns of Severe Flaws in Nuclear Med Tracking Software

U.S. federal authorities are warning that several high-severity vulnerabilities discovered in Mirion Medical Co. inventory ...

AWS launches Kiro powers with Stripe, Figma, and Datadog integrations for AI-assisted coding

Amazon Web Services’ new Kiro powers let AI coding assistants load specialized tools like Stripe and Figma on demand, cutting ...
Dark Reading

Rust Code Delivers Better Security, Also Streamlines DevOps

Software teams at Google and other Rust adopters see safer code when using the memory-safe language, and also fewer rollbacks ...

The Rise Of The Vibe-Coding Soccer Mom: How “Regular” People Are Building Wealth With AI

As we head into 2026, the hottest programming language isn't Python or JavaScript—it's English. And that shift is changing ...

Critical React, Next.js flaw lets hackers execute code on servers

A maximum severity vulnerability, dubbed 'React2Shell', in the React Server Components (RSC) 'Flight' protocol allows remote code execution without authentication in React and Next.js applications.