What 5 Million Apps Revealed About Secrets in JavaScript

Leaked API keys are nothing new, but the scale of the problem in front-end code has been largely a mystery - until now. Intruder's research team built a new secrets detection method and scanned 5 ...

ESLint 10.0: New features for JavaScript code analysis in major release

The linter designed for JavaScript brings several changes, including new options for the RuleTester API and an update in ...
Ars Technica

Why has Microsoft been routing example.com traffic to a company in Japan?

From the Department of Bizarre Anomalies: Microsoft has suppressed an unexplained anomaly on its network that was routing traffic destined to example.com—a domain reserved for testing purposes—to a ...
The Hacker News

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Cybersecurity researchers have discovered two malicious Microsoft Visual Studio Code (VS Code) extensions that are advertised as artificial intelligence (AI)-powered coding assistants, but also harbor ...
VentureBeat

Claude Code costs up to $200 a month. Goose does the same thing for free.

The artificial intelligence coding revolution comes with a catch: it's expensive. Claude Code, Anthropic's terminal-based AI agent that can write, debug, and deploy code autonomously, has captured the ...
ExtremeTech

Elon Musk Says X Will Open-Source the Code That Determines Which Posts You See

If X follows through, it would be the first major social platform to regularly publish the complete code behind its algorithm. Share on Facebook (opens in a new window) Share on X (opens in a new ...
Search Engine Land

Google explains JavaScript execution on non-200 HTTP status codes

Google made another change to the JavaScript SEO documentation help document to explain and clarify JavaScript execution on non-200 HTTP status codes. The change. Google wrote, “All pages with a 200 ...
Microsoft

Language-to-Code Translation with a Single Labeled Example

Tools for translating natural language into code promise natural, open-ended interaction with databases, web APIs, and other software systems. However, this promise is complicated by the diversity and ...
AppleInsider

Apple inadvertently leaked front-end source code of new App Store on the web

The web-based App Store browser Apple introduced Tuesday had some rookie mistakes in its implementation, which has led to the front-end source code getting published on GitHub. The result is a set of ...
Computer Weekly

F5 admits nation-state actor stole BIG-IP source code

F5 has revealed that a highly sophisticated nation-state threat actor had gained long-term, persistent access to its corporate network, exfiltrating parts of the source code for its flagship BIG-IP ...
Wired

Vibe Coding Is the New Open Source—in the Worst Way Possible

Just like you probably don't grow and grind wheat to make flour for your bread, most software developers don't write every line of code in a new project from scratch. Doing so would be extremely slow ...