How Google’s dev tools manager makes AI coding work

Google PM Ryan Salva is responsible for tools like Gemini CLI, giving him a front-row seat to the ways AI tools are changing ...

5 ways to spot software supply chain attacks and stop worms - before it's too late

A Dune-inspired worm recently hit CrowdStrike and npm, infecting hundreds of packages. Here's what happened - and how to protect your code.
Windows Latest

Windows 11 KB5065789 24H2 out with AI in Explorer, direct download links (.msu)

Windows 11 KB5065789 adds AI actions to File Explorer, lets you move hardware indicators for volume or brightness, and more.

GitHub moves to tighten npm security amid phishing, malware plague

GitHub, which owns the npm registry for JavaScript packages, says it is tightening security in response to recent attacks.
The Hacker News

GitHub Mandates 2FA and Short-Lived Tokens to Strengthen npm Supply Chain Security

GitHub enforces FIDO 2FA and seven-day token limits after Shai-Hulud npm attack to boost supply chain security.
Bleeping Computer

AI-powered malware hit 2,180 GitHub accounts in “s1ngularity” attack

Investigations into the Nx "s1ngularity" NPM supply chain attack have unveiled a massive fallout, with thousands of account tokens and repository secrets leaked. According to a post-incident ...
Arabian Post on MSN

Developers Protest GitHub’s Code Search Overhaul

GitHub’s decision to remove the ability to sort code search results by index date has triggered an outpouring of frustration from developers who argue that the change has undermined one of the ...
All Tech Nerd

Windows 11 KB5065789 Update (September 2025) – What’s New

Microsoft has started rolling out Windows 11 KB5065789 for devices running version 24H2, just ahead of the bigger 25H2 update ...