Fake job recruiters hide malware in developer coding challenges

A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers with cryptocurrency-related tasks.
WinBuzzer

AI Agent Shames GitHub Project Maintainer with Generated Blog Post After PR Rejection

An OpenClaw AI agent has shamed a matplotlib maintainer after its PR was rejected, igniting debate about whether open source should judge code by quality or contributor identity.