Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...

Microsoft's fast coding model MAI-Code-1-Flash comes to Copilot Business and Enterprise

Microsoft’s recently announced MAI-Code-1-Flash model is now generally available to GitHub Copilot Business and Copilot ...
Analytics Insight

Generative AI Coding Tools Compared: Which One is Best for Developers in 2026?

Overview Windsurf and Amazon Q Developer, two familiar AI coding brands, will have each moved into different product areas by ...
InfoWorld

Using Visual Studio Code’s ‘air-gapped’ AI model mode

VS Code can use LLM models other than GitHub Copilot’s built-in providers for AI-assisted development, including local and ...

Apple takes over Swift Package Index, vows to remove GitHub dependency

The Swift Package Index (SPI), a search engine for open source packages for the Swift programming language, is now part of ...
Visual Studio Magazine

VS Code 1.125 Adds Copilot Spend Meter After Billing Shock

VS Code 1.125 adds in-editor visibility into additional Copilot budget usage as GitHub's AI-credit billing model continues to draw developer scrutiny.
Tech Times

Karpathy CLAUDE.md Grows to Ten Rules: New Self-Check Protocol for AI Coding Loops

Karpathy CLAUDE.md ten rules: a document attributed to Andrej Karpathy began circulating Friday, adding six agent self-check ...
InfoWorld

GitHub Actions hardens checkout security to block ‘pwn request’ attacks

After years of trying to educate developers to use pull_request_target securely, the platform finally implements stronger ...

Figma adds code layers, support for animations, more AI features in new update

Figma's update adds a new code layer, support for motion and shaders, and the ability to create custom plugins for various ...
NewsBytes

Figma launches update adding code layers and motion tools

Figma's latest update brings code layers to its collaborative canvas, along with support for animations, shaders, and ...
Tom's Hardware on MSN

AI coding agents can be tricked into installing malware via 'clean' GitHub repositories

Three levels of indirection, all with seemingly innocuous steps, will catch a bot off-guard.
Design News

A Practical Guide to Spec-Driven Development with AI

Structured specifications help AI coding agents build what engineers actually need by capturing intent before code generation ...