The Hacker News

Trivy Security Scanner GitHub Actions Breached Again, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across developer systems.
CNET

OpenAI Plans to Combine Its AI Tools in a Desktop 'Superapp'

I'm a Fitness & Nutrition writer for CNET who enjoys reviewing the latest fitness gadgets, testing out activewear and sneakers, as well as debunking wellness/fitness myths. In my free time I enjoy ...
The Hacker News

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching cycles.
Hackaday

This Week In Security: Linux Flaws, Python Ownage, And A Botnet Shutdown

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...

OpenAI to buy Python toolmaker Astral to take on Anthropic; revamp product portofolio

OpenAI said on Thursday it will buy Python toolmaker Astral, as the ChatGPT maker seeks to strengthen its portfolio against rival Anthropic to gain more share in the artificial intelligence coding ...
CNA

OpenAI to buy Python toolmaker Astral to take on Anthropic

OpenAI said on Thursday it will acquire Python toolmaker Astral, as the ChatGPT owner looks to strengthen its portfolio against rival Anthropic and gain more share in the artificial intelligence ...