martincid.com

CISA, the agency that defends US federal networks, left its own AWS keys on GitHub

A GitGuardian researcher named Guillaume Valadon was sifting through public GitHub commits when he hit a repository whose name read like a mistake: Private-CISA. It belonged to a contractor for the ...

I’m a Normie. Can Normies Really Vibe Code?

Apparently anyone can vibe code anything these days. So Claude and I tried to make a database for tracking the petty ...
Tech Times

Nous Research’s Hermes Agent Dethrones OpenClaw as the World’s Most-Used Open-Source AI Agent

Nous Research’s Hermes Agent overtook OpenClaw on May 10 to claim the top position on OpenRouter’s global daily inference ...
InfoQ

Anthropic Introduces Routines for Claude Code Automation

Anthropic has introduced a new feature called Routines for Claude Code, allowing developers to configure automated coding ...

OpenAI Launches Daybreak the Same Day Google Confirmed the First AI-Built Zero-Day Attack

On May 11, the same day Google's Threat Intelligence Group disclosed the first confirmed case of attackers using AI to build ...
Visual Studio Magazine

The Next Generation of Developer Productivity with GitHub Copilot and Visual Studio

Simona Liao and Leah Tran, product managers at Microsoft, discuss how GitHub Copilot in Visual Studio has evolved from a code completion tool into an agent-driven development workflow -- and share ...

Pervaziv AI Advances Enterprise AI Control Layer for Secure Coding with Cortex 4.0

Cortex 4.0 delivers up to 2.5x faster coding workflows, immersive AI interactions, and a fully reimagined AI workspace ...
GitHub

A format specification for describing a visual identity to coding agents. DESIGN.md gives agents a persistent, structured understanding of a design system.

A DESIGN.md file combines machine-readable design tokens (YAML front matter) with human-readable design rationale (markdown prose). Tokens give agents exact values. Prose tells them why those values ...
Dark Reading

'TrustFall' Convention Exposes Claude Code Execution Risk

Malicious repositories can trigger code execution in Claude Code, Cursor CLI, Gemini CLI, and CoPilot CLI with minimal or no ...
GitHub

Ralph for Claude Code

Ralph is an implementation of the Geoffrey Huntley's technique for Claude Code that enables continuous autonomous development cycles he named after Ralph Wiggum. It enables continuous autonomous ...

Claude Code, Copilot and Codex all got hacked. Every attacker went for the credential, not the model.

Six teams exploited Claude Code, Copilot, Codex, and Vertex AI in nine months. Every attack hit runtime credentials that IAM ...