A massive Shai-Hulud-style npm supply chain worm is hitting the software ecosystem, burrowing through developer machines, CI pipelines, and AI coding tools. Socket researchers uncovered the active attack campaign and …
Tag:
Coding
OPINION The hype surrounding AI in software development is undeniable. We are witnessing a paradigm shift, where “vibe coding” — expressing intent in natural language and leveraging AI large language …
Safety & Security
Researchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks
by David Walker
Dec 06, 2025Ravie LakshmananAI Security / Vulnerability Over 30 security vulnerabilities have been disclosed in various artificial intelligence (AI)-powered Integrated Development Environments (IDEs) that combine prompt injection primitives with legitimate …