A major security incident affecting the widely used open source vulnerability scanner Trivy has exposed critical weaknesses in software supply chain security, after maintainers confirmed that a ...

Security researchers have warned that the open source ecosystem has become a “structural risk,” after revealing another surge in malicious packages last year. Sonatype said in its 2026 State of the ...

A new hacking group has been rampaging the Internet in a persistent campaign that spreads a self-propagating and never-before-seen backdoor—and curiously a data wiper that targets Iranian machines.

AI is burying open source maintainers under a flood of automated security reports they don't have the time or tools to process. The Linux Foundation's $12.5 million coalition funding aims to fix that ...

AI has upended the foundation of open source security, and commercial open source applications must close their code to protect sensitive data.

Cisco Systems Inc. is rolling out a set of new features designed to help companies secure their artificial intelligence agents. The product enhancements made their debut today at the RSAC 2026 ...

OpenClaw, the open-source AI assistant formerly known as Clawdbot and then Moltbot, crossed 180,000 GitHub stars and drew 2 million visitors in a single week, according to creator Peter Steinberger.

Clawdbot has rebranded again, completing its "molt" into OpenClaw. Security is a "top priority," but new exploits surfaced over the weekend. Experts warn against the hype without understanding the ...