AI recruiting startup Mercor confirms supply chain attack via LiteLLM library compromise. Hackers claim 4TB of data including ...

A supply-chain attack backdoored versions of Axios, a popular JavaScript library that's present in many different software ...

A critical supply chain attack has compromised the popular JavaScript library axios, leading to developers unknowingly ...

TeamPCP strikes again, with almost identical code to LiteLLM.

This technique can be used out-of-the-box, requiring no model training or special packaging. It is code-execution free, which ...

How AI has suddenly become much more useful to open-source developers ...

Karpathy proposes something simpler and more loosely, messily elegant than the typical enterprise solution of a vector ...

Or, why the software supply chain should be treated as critical infrastructure with guardrails built in at every layer.

The widely used Axios HTTP client library, a JavaScript component used by developers, was recently hacked to distribute ...

North Korean hackers used an updated version of a known backdoor to target a popular npm package.

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Students graduating in today’s labor market are facing a reality that no previous generation has faced: a job market where ...