Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...

Anthropic's Claude Code Security is available now after finding 500+ vulnerabilities: how security leaders should respond

Anthropic's Claude Opus 4.6 surfaced 500+ high-severity vulnerabilities that survived decades of expert review. Fifteen days later, they shipped Claude Code Security. Here's what reasoning-based ...
GitHub

Claude Code Base Action

This GitHub Action allows you to run Claude Code within your GitHub Actions workflows. You can use this to build any custom workflow on top of Claude Code. For simply tagging @claude in issues and PRs ...
Opinion

The Code Sovereignty Paradox: Why AI Productivity Is Creating A Security Debt Crisis

Sovereign factory AI is the starting point for a secure coding assistant. Enterprises need to embrace a data-first security approach, one that protects sensitive information at the point of retrieval ...
InfoQ

Anthropic Study: AI Coding Assistance Reduces Developer Skill Mastery by 17%

Anthropic research shows developers using AI assistance scored 17% lower on comprehension tests when learning new coding ...