SECURITY
GitHub Adds 28 Secret Detectors Including Snowflake and Vercel API Keys
GitHub's March 2026 secret scanning update adds 28 new detectors from 15 providers, enables push protection for 39 patterns, and adds validity checks for DeepSeek and npm tokens.
GitHub Upgrades Secret Scanning with Enterprise-Wide Metadata Controls
GitHub's extended metadata checks now deployable at scale through security configurations, auto-enabling for repos with validity checks already active.
OpenAI Addresses Mixpanel Security Incident Impacting API Data
OpenAI discloses a security incident involving Mixpanel, affecting limited API user data. No sensitive information such as API keys or payment details were exposed.
CodeQL 2.23.5 Enhances Swift 6.2 Support and Introduces New Java Security Queries
GitHub's CodeQL 2.23.5 update enhances Swift 6.2 support, introduces new Java security queries, and improves code analysis accuracy, offering developers better tools for code scanning.
Anthropic Tightens Restrictions on AI Sales to Certain Regions
Anthropic updates its terms to restrict AI sales and usage in regions with potential security risks, emphasizing democratic interests and AI safety.
Kiln Security Breach Highlights Risks in External Staking Infrastructure
The recent Kiln incident underscores the vulnerabilities in using external staking providers, as sophisticated attackers bypassed existing security measures, prompting a reevaluation of staking solutions.
Anthropic Implements AI Safety Level 3 Protocols for Enhanced Security
Anthropic has activated AI Safety Level 3 standards to bolster security and deployment measures, particularly against CBRN threats, with the launch of Claude Opus 4.
Harvey Integrates Seamlessly with iManage, Enhancing Security and Scalability
Harvey's integration with iManage provides a secure, scalable, and efficient solution for legal workflows, addressing challenges across security, scaling, and networking.
NVIDIA Unveils AI Factory Design to Enhance U.S. Government Systems
NVIDIA, in collaboration with U.S. tech leaders, has introduced an AI Factory design to modernize federal systems, ensuring compliance with stringent security standards.
Monero (XMR) Enhances Security with Latest 'Fluorine Fermi' Update
Monero (XMR) releases version 0.18.4.3, 'Fluorine Fermi', enhancing security against spy nodes. The update includes contributions from 13 developers and 36 commits.
GitHub Enhances Secret Scanning with Expanded Default Patterns
GitHub introduces new and upgraded default patterns for secret scanning, enhancing security by ensuring comprehensive detection across various secret types.
Smart Contract Security and Hacks: The Rising Importance of Safe DeFi
Smart contract security is critical in DeFi, with $3.1 billion lost to hacks in early 2025. Rigorous audits and bug bounties are essential to mitigate sophisticated attacks.
CVE Allocation: Why AI Models Should Be Excluded
Explore why Common Vulnerabilities and Exposures (CVE) should focus on frameworks and applications rather than AI models, according to NVIDIA's insights.
NPM Breach Highlights Vulnerabilities for Crypto Users
The recent NPM breach exposed vulnerabilities in widely-used JavaScript libraries, impacting crypto users and highlighting the need for stringent security measures in software development.
GitHub Proxima Enhances Security with New Validity Checks and Validators
GitHub introduces validity checks for Proxima, enhancing security for Secret Protection and Advanced Security customers. New validators are added to improve platform support.
