Microsoft has patched an actively exploited Exchange Server vulnerability that allows threat actors to execute arbitrary ...

Eight innovative tools that are reimagining web applications and how we build them. Welcome to the Great Unbloating.

Recently, npm, the essential package manager used by developers worldwide, suffered a massive supply chain attack. This ...

Tenet Security researchers reveal how new “agentjacking” attacks could trick coding agents into executing arbitrary code ...

Over 100 NPM and PyPI packages were injected with malicious code in the Miasma and Hades Shai-Hulud supply chain attack ...

Six Proto6 flaws in protobuf.js enable RCE and DoS attacks; patched in versions 7.5.6 and 8.0.2 to protect Node.js services.

The OWASP-backed tool scans JavaScript and TypeScript lockfiles locally, aiming to help developers catch and remediate dependency risks before CI failures.

Cloudflare Inc. today said it has acquired VoidZero Inc., the open-source company behind Vite and the widely used JavaScript ...

The man who built the tool that’s rewriting how software gets made hasn’t touched a keyboard to write code in the better part ...

The round comes just eight months after Supabase closed on its Series E and means it has now raised over $1 billion in total ...

Learn how Claude Code's new workflow feature reduces token tax, improves reliability, and automates complex developer tasks efficiently.