SecurityWeek

VS Code Configs Expose GitHub Codespaces to Attacks

Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.
Infosecurity Magazine

Malicious Commands in GitHub Codespaces Enable RCE

A set of attack vectors in GitHub Codespaces have been uncovered that enable remote code execution (RCE) by opening a ...

So yeah, I vibe-coded a log colorizer—and I feel good about it

Oh, sure, I can “code.” That is, I can flail my way through a block of (relatively simple) pseudocode and follow the flow. I ...
InfoWorld

GitHub previews support for Claude and Codex coding agents

Copilot Pro+ and Copilot Enterprise users now can run multiple coding agents directly inside GitHub, GitHub Mobile, and ...

Former GitHub CEO raises record $60M dev tool seed round at $300M valuation

Thomas Dohmke's new startup offers an AI system to allow developers to better manage all the code AI agents produce.

Former GitHub CEO launches new developer platform with huge $60M seed round

Thomas Dohmke, who helped scale GitHub Copilot during his tenure as CEO at GitHub, is back with a new startup that’s coming ...
InfoQ

GitHub Copilot SDK Lets Developers Integrate Copilot CLI's Engine into Apps

Now available in technical preview on GitHub, the GitHub Copilot SDK lets developers embed the same engine that powers GitHub ...

GitHub Copilot adds GPT-5.3-Codex with 25% faster performance for agentic tasks

Codex. Pro and Enterprise users gain 25% faster agentic task performance. Learn how to enable it today. GitHub has announced ...
InfoWorld

GitHub eyes restrictions on pull requests to rein in AI-based code deluge on maintainers

GitHub is weighing tighter pull request controls and AI-based filters after maintainers warned that a surge of low-quality, ...
The Hacker News

ThreatsDay Bulletin: Codespaces RCE, AsyncRAT C2, BYOVD Abuse, AI Cloud Intrusions & 15+ Stories

Key cyber updates on ransomware, cloud intrusions, phishing, botnets, supply-chain risks, and nation-state threat activity.

GitHub integrates Claude and Codex AI coding agents directly into GitHub

GitHub users can now use third-party coding agents ...

LLAMA 5 Meta’s Most Powerful Al Model Just Leaked

Meta’s Avocado model code name for LLAMA 5 is said to beat top open source base models before post-training and claimed 10x text compute efficiency ...