Or, why the software supply chain should be treated as critical infrastructure with guardrails built in at every layer.

Compliance continues to drive adoption of trusted open source: We saw the same themes from December present here, underscored ...

IntroductionOn March 31, 2026, Anthropic accidentally exposed the full source code of Claude Code (its flagship ...

Anthropic is trying to remove details about its coding agent from GitHub, but programmers are converting the code into ...

Nearly 2,000 internal files were briefly leaked after ‘human error’, raising fresh security questions at the AI company ...

Anthropic’s leak of proprietary Claude Code sparked the developer community to group around “claw-code,” the fastest-growing ...

Anthropic accidentally exposed over half a million lines of its Claude Code, triggering a rapid global effort to copy and ...

A routine software update for Anthropic's Claude Code tool accidentally leaked its entire source code, sparking rapid ...

For those who recall the debate surrounding Microsoft Recall not long ago, Claude Code's capture of activity is similar.

Language package managers like pip, npm, and others pose a high risk during active supply chain attacks. However, OS updates ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

A cyber attack hit LiteLLM, an open-source library used in many AI systems, carrying malicious code that stole credentials ...