The open-source project npmx is used for fast searching of npm packages. It focuses on UX, displays vulnerability warnings, and offers a dark mode.

Cloudflare’s experimental AI-built Next.js alternative, vinext, has been released with critical security flaws, escalating a feud with Next.js maintainer, Vercel.

The Document Foundation (TDF) has pulled LibreOffice Online out of its "attic" – its term for retired projects – and is resuming development.

BARCELONA, SPAIN - Media OutReach Newswire - 1 March 2026 - On the eve of the 2026 Mobile World Congress (MWC 2026), Huawei announced that it will officially launch the ...

Demna has unveiled his first Gucci runway show in Milan, and he's pushing the brand back toward sleek, body-hugging sex appeal.

Vercel has launched "react-best-practices," an open-source repository featuring 40+ performance optimization rules for React and Next.js apps. Tailored for AI coding agents yet valuable for developers ...

UTSA: ~20% of AI-suggested packages don't exist. Slopsquatting could let attackers slip malicious libs into projects.

Linked to North Korean fake job-recruitment campaigns, the poisoned repositories are aimed at establishing persistent C2 ...

Researchers have exposed OpenAI's covert Persona watchlist, active since 2023, screening users for government agencies via 53 ...

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...

Just like algae blooms in the ocean and pollen in the spring, there’s been an explosion in the past year or two of new software, related tools and lingo from the IT and mainstream/consumer side. Some ...

Anthropic has launched Claude Code Security, an AI vulnerability scanner that found 500+ undetected bugs, plus desktop automation and GitHub PR auto-merge.