今週、複数のAIモデルへのリクエストをルーティングするために開発者が使用するオープンソースライブラリLiteLLMがサプライチェーン攻撃を受けた。LiteLLMのインシデント報告書とDatadogによる後の分析によると、悪意あるコードを含む ...

Compare the top 5 customer identity and access management (CIAM) platforms in 2026 to find the right fit for your product's ...

Meta has indefinitely paused work with $10B AI data startup Mercor after a LiteLLM supply chain attack exposed training ...

Overview Modern Python automation now relies on fast tools like Polars and Ruff, which help cut down processing time and ...

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

The threat group's shift to speedy attacks on AWS, Azure, and SaaS instances shows organizations need to respond quickly to ...

The latest release of Apache Kafka delivers the queue-like consumption semantics of point-to-point messaging. Here’s the how, ...

A cyber attack hit LiteLLM, an open-source library used in many AI systems, carrying malicious code that stole credentials ...

Threat group TeamPCP exploited credentials stolen in the Trivy breach to push malicious versions of LiteLLM to PyPI, exposing ...

Independent researcher Simon Willison raises questions about hidden Series A and B rounds, investor windfalls, and whether a key piece of Python infrastructure just became a competitive weapon in the ...