XDA Developers on MSN

Google Antigravity supports VS Code extensions, but I found myself needing fewer of them

The extension era is over.

In the wake of Claude Code's source code leak, 5 actions enterprise security leaders should take now

Gartner issued a same-day advisory after Anthropic leaked Claude Code's full architecture. CrowdStrike CTO Elia Zaitsev and Enkrypt AI CSO Merritt Baer weigh in on agent permissions and derived IP ...
The Hacker News

Google Attributes Axios npm Supply Chain Attack to North Korean Group UNC1069

Google links Axios npm supply chain attack to UNC1069 after trojanized versions 1.14.1 and 0.30.4 spread WAVESHAPER.V2, impacting multiple OS.
SiliconRepublic

Anthropic accidentally leaks Claude Code source in npm slip

Anthropic confirmed yesterday that ‘human error’ led to the leak of much of the source code of its star product Claude Code. Anthropic has accidentally leaked the source code of its Claude Code agent ...
theregister

Anthropic goes nude, exposes Claude Code source by accident

Would you like a closer look at Claude? Someone at Anthropic has some explaining to do, as the official npm package for Claude Code shipped with a map file exposing what appears to be the popular AI ...
GitHub

Claude Code's Entire Source Code Got Leaked via a Sourcemap in npm, Let's Talk About It

There's also a non-zero chance this repo might be taken down, so if you want to play around with it later, or archive it yourself, feel free to fork it & bookmark the external blog link ! Earlier ...
The Hacker News

Axios Supply Chain Attack Pushes Cross-Platform RAT via Compromised npm Account

The popular HTTP client known as Axios has suffered a supply chain attack after two newly published versions of the npm package introduced a malicious dependency that delivers a trojan capable of ...