The Hacker News

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching cycles.
WinBuzzer

OpenAI to Merge ChatGPT, Codex, Atlas Browser Into Superapp

OpenAI has announced plans to merge ChatGPT, Codex, and its Atlas browser into a single desktop superapp targeting coding and ...

Chainguard is racing to fix trust in AI-built software - here's how

Chainguard is expanding beyond open-source security to protect open-core software, AI agent skills, and GitHub Actions.
Blockonomi

OpenAI Acquires Python Toolmaker Astral to Bolster Codex Against Claude Code

OpenAI acquires Astral, the Python toolmaker, to enhance Codex AI coding assistant as it competes with Anthropic's Claude Code and Cursor.

OpenAI to buy Python toolmaker Astral to take on Anthropic

March 19 (Reuters) - OpenAI said on Thursday it will acquire Python toolmaker Astral, as the ChatGPT ​owner looks to ...
UC San Diego Today

A UC San Diego Tool Teaching Code to 25 Million is Even More Critical in Age of AI

UC San Diego cognitive scientist Philip Guo created Python Tutor, a free tool that makes code “visible” step by step. The research behind it earned a Test of Time award, recog ...
Global Investigative Journalism Network

Analyzing Job Posting Data to Investigate the African Labor Behind AGI Hype

This investigation was supported by the Pulitzer Center’s Artificial Intelligence Accountability Network  Investigative ...

Google developers find that with AI, judgment is more important than JavaScript

Companies like Google are using AI to take over the bulk of coding. This gives developers more decision-making and oversight ...
University at Buffalo

UB researcher demonstrates power of AI in social sciences

Rachael Hinkle’s work with machine learning intersects political science, legal training and computational methods.

GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...

Why Garry Tan’s Claude Code setup has gotten so much love, and hate

Thousands of people are trying Garry Tan's Claude Code setup, which was shared on GitHub. And everyone has an opinion: even ...
The Hacker News

AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE

DNS flaw in Amazon Bedrock and critical AI vulnerabilities expose data and enable RCE, risking breaches and infrastructure ...