Open source package with 1 million monthly downloads stole user credentials

Open source software with more than 1 million monthly downloads was compromised after a threat actor exploited a ...

Warp Open-Sources Its Agentic Development Environment, Introducing a New Model for Building Software with Cloud Agents

Sponsored by OpenAI, Warp launches an open-source ADE where users can submit ideas and watch agents build and ship them ...
Bleeping Computer

Clever 'GitHub Scanner' campaign abusing repos to push malware

A clever threat campaign is abusing GitHub repositories to distribute the Lumma Stealer password-stealing malware targeting users who frequent an open source project repository or are subscribed to ...
CSOonline

GitHub hit by a sophisticated malware campaign as ‘Banana Squad’ mimics popular repos

Attackers use typo-squatting, obfuscation, and fake accounts to slip Python-based malware into open-source projects, raising fresh alarms for OSS supply chain security. A threat group dubbed “Banana ...
Hosted on MSN

Open-source AI tools expand with enterprise-ready integrations

GitHub’s updated 'Awesome Open Source AI' list showcases elite frameworks, models, and infrastructure, coinciding with advances like Google Cloud’s BigQuery DataFrames and orchestration tools such as ...
Morning Overview on MSN

This wild AI tool rips off open source code without breaking copyright

In early 2025, a class-action lawsuit against GitHub, Microsoft, and OpenAI over Copilot’s use of open-source training data ...
Opinion
InfoWorldOpinion

How open source ideals must expand for AI

The new definition of open must consider implementation, specification, and governance as three critical factors that must be woven together.