SecurityWeek

Researchers Demo New Claude Code Attack Using Harmless-Looking Repositories to Hijack Developer Machines

Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Tech Times

Most AI Models Would Run Your Company Into the Ground, Princeton’s CEO-Bench Finds

Princeton’s CEO-Bench gave 14 AI models $1 million to run a simulated SaaS startup for 500 days. Most went bankrupt or lost ...
InfoWorld

Visual Studio Code introduces restricted mode for untrusted folders

Workspace Trust feature in VS Code 1.26 lets users configure whether code in a project folder can be executed by VS Code ...
How-To Geek on MSN

These 7 Python libraries are useful even if you're not a developer

Every Python developer knows some or all of these libraries, because they’re stable, reliable, and excellent at what they do.
Windows Report

Mozilla Warns Clean GitHub Repositories Can Trick Claude Code Into Running Malware

Mozilla researchers revealed a new attack that tricks Claude Code into running hidden commands from seemingly harmless GitHub repositories.

Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...
IEEE

Understanding the Robustness of Transformer-Based Code Intelligence via Code Transformation: Challenges and Opportunities

Abstract: Transformer-based models have demonstrated state-of-the-art performance in various intelligent coding tasks such as code comment generation and code completion. Previous studies show that ...