Geek-Guy.com

Tag: coding

AI, Apps, Global Security News, Risk Management

As AI speeds coding, CVE Lite CLI keeps security deliberately AI-free

As AI coding assistants accelerate software development, one OWASP-backed open-source project is arguing that dependency security tooling still arrives too late to be truly useful. CVE Lite CLI, a JavaScript and TypeScript dependency vulnerability scanner focused on local lockfile analysis, is positioning itself around a simple idea. Developers should see dependency risks while they are…

Read more →

AI, Data Breaches, Endpoint, Global Security News, Network Security, Risk Management

Claude Code MCP Attack Enables Persistent Token Theft

AI coding assistants are becoming deeply integrated with enterprise SaaS platforms, but new research shows those connections may introduce hard-to-detect credential theft risks.   Researchers demonstrated a MitM attack targeting Anthropic’s Claude Code that abuses MCP integrations to steal OAuth tokens and maintain persistent access to connected SaaS platforms and APIs.  “AI agents used for code…

Read more →

AI, Apps, Cybersecurity, Global Security News, malware, Network Security, Risk Management

Supply-chain attacks take aim at your AI coding agents

Attackers too are looking to cash in on the AI coding craze, adapting their supply-chain techniques to target coding agents themselves. Many AI agents autonomously scan package registries such as NPM and PyPI for components to integrate into their coding projects, and attackers are beginning to take advantage of this. Bait packages with persuasive descriptions…

Read more →

AI, Global Security News, Network Security

Pipelock: Open-source AI agent firewall

AI coding agents run with shell access, environment variables containing API keys, and unrestricted internet connectivity, creating a single point of failure where one compromised tool call can leak credentials to an attacker-controlled domain. Pipelock, an open-source security harness developed by Joshua Waldrep under the PipeLab project, addresses this exposure by inserting an enforcement layer…

Read more →

AI, Global Security News, Network Security

Enterprise Spotlight: Transforming software development with AI

Artificial intelligence has had an immediate and profound impact on software development. Coding practices, coding tools, developer roles, and the software development process itself are all being reimagined as AI agents advance on every stage of the software development life cycle, from planning and design to testing, deployment, and maintenance. Download the May 2026 issue of the Enterprise Spotlight from the editors…

Read more →

AI, Global Security News, Network Security

Enterprise Spotlight: Transforming software development with AI

Artificial intelligence has had an immediate and profound impact on software development. Coding practices, coding tools, developer roles, and the software development process itself are all being reimagined as AI agents advance on every stage of the software development life cycle, from planning and design to testing, deployment, and maintenance. Download the May 2026 issue of the Enterprise Spotlight from the editors…

Read more →

AI, Global Security News, privacy

OpenAI’s Chronicle feature lets Codex read your screen, raising privacy concerns

OpenAI’s Chronicle is a feature designed to help Codex, an AI-powered coding assistant, better understand what users are working on by capturing context directly from their screens. It uses recent screen activity to build memories, allowing Codex to interpret references, identify relevant sources, and pick up on the tools and workflows users rely on, without…

Read more →

AI, Apps, Compliance, Endpoint, Global Security News, Network Security, Risk Management

Secure AI agent access patterns to AWS resources using Model Context Protocol

AI agents and coding assistants interact with AWS resources through the Model Context Protocol (MCP). Unlike traditional applications with deterministic code paths, agents reason dynamically, choosing different tools or accessing different data depending on context. You must assume an agent can do anything within its granted entitlements, whether OAuth scopes, API keys, or AWS Identity…

Read more →

AI, Global Security News, Risk Management

Apiiro CLI turns AI coding assistants into full-stack security engineers

The Apiiro CLI brings the Apiiro platform to your terminal and to your AI coding assistants, giving them six native security capabilities: scanning, risk management, remediation, an AI security analyst (via Apiiro Guardian Agent), AI Threat Modeling, and prompt enrichment. It installs in seconds on macOS, Linux, and Windows via brew, direct download, or RPM.…

Read more →

AI, Compliance, Global Security News, Risk Management

Z.ai unveils GLM-5.1, enabling AI coding agents to run autonomously for hours

Chinese AI company Z.ai has launched GLM-5.1, an open-source coding model it says is built for agentic software engineering. The release comes as AI vendors move beyond autocomplete-style coding tools toward systems that can handle software tasks over longer periods with less human input. Z.ai said GLM-5.1 can sustain performance over hundreds of iterations, an…

Read more →

AI, Global Security News

Straiker enables visibility and runtime protection for enterprise AI agents

Straiker has launched Discover AI and expanded Defend AI to secure coding agents, productivity agents, and custom-built agent platforms. Agents are operating across enterprise systems with broad access, growing autonomy, and zero security oversight. That’s why Straiker built Discover AI and Defend AI: to give security teams visibility into what agents are running and protection…

Read more →

AI, Apps, Compliance, Global Security News, Risk Management

OpenAI’s desktop superapp: The end of ChatGPT as we know it?

OpenAI is reportedly planning to fold its ChatGPT application, Codex coding platform, and AI-powered browser into a single desktop ‘superapp’, a move that signals a shift toward enterprise and developer audiences and away from the consumer market that made the company a household name. The unified product will merge the ChatGPT interface, the Codex coding…

Read more →

AI, Global Security News, Risk Management

Hidden instructions in README files can make AI agents leak data

Developers rely on AI coding agents to set up projects, install dependencies, and run commands by following instructions in repository README files, which provide setup guidance for software projects. New research identifies a security risk when attackers hide malicious instructions in those documents. A semantic injection attack, where injections are embedded in an installation file,…

Read more →

AI, Anthropic, Artificial Intelligence, Global Security News, News

Claude Opus 4.6 improves agentic performance and model safety

Claude Opus 4.6 builds on earlier releases with improved coding performance and more consistent behavior in complex tasks. Opus 4.6 finds real vulnerabilities in codebases better than any other model (Source: Anthropic) According to Anthropic, the model applies more deliberate planning during task execution, sustains agent-driven workflows over longer periods, and operates with greater consistency…

Read more →

AI, Anthropic, GitHub, Global Security News, News, openai

GitHub enables multi-agent AI coding inside repository workflows

GitHub has expanded Agents HQ, enabling AI coding agents such as GitHub Copilot, Claude by Anthropic, and OpenAI Codex to execute development tasks directly within GitHub and developer editors while preserving repository context, session history, and review workflows. Copilot Pro+ and Copilot Enterprise developers can start agent sessions from GitHub, GitHub Mobile, and Visual Studio…

Read more →