It’s Probably a Bit Much to Say This AI Agent Cyberbullied a Developer By Blogging About Him

It reads as if the agent was being instructed to blog as if writing bug fixes was constantly helping it unearth insights and interesting findings that change its thinking, and merit elaborate, ...
InfoWorld

Flaws in four popular VS Code extensions left 128 million installs open to attack

Three of the four vulnerabilities remained unpatched months after OX Security reported them to the maintainers.
Hoodline

AI Agent Attack on Matplotlib Maintainer Rattles Silicon Valley

According to GitHub, the PR was marked as a first-time contribution and closed by a Matplotlib maintainer within hours, as ...
InfoWorld

Open source maintainers are being targeted by AI agent as part of ‘reputation farming’

“Once contribution and reputation building can be automated, the attack surface moves from the code to the governance process around it. Projects that rely on informal trust and maintainer intuition ...