Plus: The FBI says a recent hack of its wiretap tools poses a national security risk, attackers stole Cisco source code as ...

Anthropic’s Claude Code tool accidentally exposed roughly 512,000 lines of proprietary TypeScript through a packaging mistake ...

Software development is moving from human-led to agent-led at a pace that security organizations are not built to absorb, ...

Hundreds of thousands of lines of code were exposed, giving researchers insight into upcoming models and internal ...

Anthropic launched Code Review in Claude Code, a multi-agent system that automatically analyzes AI-generated code, flags logic errors, and helps enterprise developers manage the growing volume of code ...

Security researchers from Georgia Tech have observed a surge in reported CVEs for which the flaw was introduced by ...

A tool can be used well or poorly, but much of the time it is neither inherently good nor bad. Take vibe coding, the act of using natural language to instruct an LLM to generate code. Applied poorly, ...

When Anthropic unveiled Claude Code Security late last month, investors were quick to punish traditional cybersecurity vendors. But the victims of that upset, like Palo Alto Networks and CrowdStrike, ...

Authentication Failures (A07) show the largest gap in the dataset: a 48-percentage-point difference between leaders and the field. Leaders fix at nearly 60%, while the field sits at roughly 12%.

Claude Code Security made a big splash when it was introduced last week, but it may be too early to call it as disruptive as the markets suggested. Anthropic unveiled Claude Code Security on Feb. 20, ...

The AI platform said Friday it’s adding vulnerability scanning capabilities into its web-based Claude Code tool in a move to compete with application security vendors. Anthropic announced Friday it is ...

Most enterprise software governance frameworks rely on the assumption that software authorship can be reasonably bounded and clearly defined by role. AI code generation has quietly made that ...