The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

2026年3月31日、AnthropicのコーディングAIエージェント・Claude Codeのソースコードが流出する事件が起きました。このソースコードを解析した結果、Anthroipicが開発中あるいは無効化していた機能の存在が明らかとなりました。

A North Korea-nexus threat actor compromised the widely used axios npm package, delivering a cross-platform remote access ...

Google links Axios npm supply chain attack to UNC1069 after trojanized versions 1.14.1 and 0.30.4 spread WAVESHAPER.V2, ...

With almost 175,000 npm projects listing the library as a dependency, the attack had a huge cascade effect and shows how ...

Four vulnerabilities in CrewAI could be chained together via prompt injection for sandbox escape, remote code execution, and ...

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...

OpenAI has launched a plugin marketplace for Codex with over 20 integrations from Slack, Figma, and Notion, adding enterprise ...

Two versions of the widely used JavaScript library axios were maliciously published on npm on March 31, 2026. A hijacked ...

Learn how to build your own AI Agent with Raspberry Pi and PicoClaw that can control Apps, Files, and Chat Platforms ...

Did you know formatting your AI prompts with Markdown drains your token limit? Learn how Markdown impacts LLM costs and how to optimize ...