The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

The new family of AI models can run on a smartphone, a Raspberry Pi, or a data centre, and is free to use commercially.

Compliance continues to drive adoption of trusted open source: We saw the same themes from December present here, underscored ...

This technique can be used out-of-the-box, requiring no model training or special packaging. It is code-execution free, which ...

Another big drawback: Any modules not written in pure Python can’t run in Wasm unless a Wasm-specific version of that module ...

How AI has suddenly become much more useful to open-source developers ...

Anthropic’s Claude Code leak reveals how modern AI agents really work, from memory design to orchestration, and why the ...

Claude code just turned me into something of a game developer ...

A new info-stealing malware named Infinity Stealer is targeting macOS systems with a Python payload packaged as an executable using the open-source Nuitka compiler.

TeamPCP hackers compromised the Telnyx package on the Python Package Index today, uploading malicious versions that deliver ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.