Fake job recruiters hide malware in developer coding challenges

A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers with cryptocurrency-related tasks.

Arcjet Launches v1.0 of its JavaScript SDK, Establishing Stability as a Core Developer Feature

Arcjet today announced the release of v1.0 of its Arcjet JavaScript SDK, marking the transition from beta to a stable, production-ready API that teams can confidently adopt for the long term. After ...
HackadayOpinion

How Vibe Coding Is Killing Open Source

Does vibe coding risk destroying the Open Source ecosystem? According to a pre-print paper by a number of high-profile ...
Ars Technica

10 things I learned from burning myself out with AI coding agents

If you’ve ever used a 3D printer, you may recall the wondrous feeling when you first printed something you could have never sculpted or built yourself. Download a model file, load some plastic ...
CNET

The Model Matters: I Tried Vibe Coding a Project With Different Gemini Models

Blake has over a decade of experience writing for the web, with a focus on mobile phones, where he covered the smartphone boom of the 2010s and the broader tech scene. When he's not in front of a ...
CSOonline

Output from vibe coding tools prone to critical security flaws, study finds

Popular vibe coding platforms consistently generate insecure code in response to common programming prompts, including creating vulnerabilities rated as ‘critical,’ new testing has found. Security ...
ZDNet

Even Linus Torvalds is vibe coding now

Linus Torvalds used vibe programming for a toy program. Vibe programming remains risky for serious projects. Linux developers have adopted AI tools for maintenance work. Linus Torvalds has started ...
VentureBeat

Enterprise AI coding grows teeth: GPT‑5.2‑Codex weaves security into large-scale software refactors

With the recent release of GPT 5.2, OpenAI updated other related models, including its popular coding model Codex, bringing more agentic use cases to its fold. GPT-5.2-Codex, which OpenAI called in a ...
Computerworld

The cost of abandoned genAI projects? Garbage code, orphan apps, and security issues

IT leaders rushing ahead on generative AI projects often don’t realize the technical junk they might inadvertently be creating. Gunslinging IT leaders with high generative AI (genAI) experiment ...
Forbes

Google’s Hot New AI Coding Tool Was Hacked A Day After Launch

A security researcher discovered a nasty flaw in Google’s Antigravity tool, the latest example of companies rushing out AI tools vulnerable to hacking. Within 24 hours of Google releasing its ...
Bleeping Computer

Popular JavaScript library expr-eval vulnerable to RCE flaw

A critical vulnerability in the popular expr-eval JavaScript library, with over 800,000 weekly downloads on NPM, can be exploited to execute code remotely through maliciously crafted input. The ...