Five malicious Rust crates and an AI bot exploited CI/CD pipelines and GitHub Actions in Feb 2026, stealing developer secrets ...

Survey of 450 automotive development professionals finds early adoption of modern toolchains key to maintaining competitiveness and software quality in AI-driven vehicle development. MINNEAPOLIS, ...

TrustInSoft Analyzer brings a unique level of guarantees thanks to the use of sound formal methods.”— Caroline ...

Researchers have found that LLM-driven bug finding is not a drop-in replacement for mature static analysis pipelines. Studies comparing AI coding agents to human developers show that while AI can be ...

Rust developers are satisfied with the pace at which the language is evolving. However, three major concerns are troubling the developer community.

I’ve also made a couple overview pages that collect posts on specific topics: Package Management and Git. If you want to see everything I’ve written about either of those, those are good places to ...

The Pakistani threat group has been using AI to rewrite malicious code across multiple programming languages, prioritising scale over sophistication to evade detection, security researchers have found ...

The Rust reimplementation of classic Unix tools reaches version 0.7 with numerous performance improvements and build fixes ...

I'm taking the road less traveled.

Transparent Tribe uses AI tools to mass-produce polyglot malware targeting India using Slack, Discord, and Google Sheets C2.

Using an AI coding assistant to migrate an application from one programming language to another wasn’t as easy as it looked. Here are three takeaways.

Are AGENTS.md files actually helping your AI coding agents, or are they making them stupider? We dive into new research from ETH Zurich, real-world experiments, and security risks to find the truth ...