CISA Contractor Exposed Sensitive Credentials in Public GitHub Repository

CISA is investigating after a contractor’s public GitHub repository exposed AWS GovCloud credentials, internal files, and ...
The Hacker News

GitHub Internal Repositories Breached via Malicious Nx Console VS Code Extension

GitHub lost 3,800 internal repos after poisoned Nx Console update exposed developer credentials and supply-chain risk.

Research repository arXiv will ban authors for a year if they let AI do all the work

ArXiv is doing more to crack down on the careless use of large language models in scientific papers.
Morning Overview on MSN

Trellix just confirmed hackers broke into its own source code repository — exposing the cybersecurity firm’s internal systems to outside inspection

A cybersecurity company trusted to protect some of the largest networks in the country has itself been breached. Trellix, the ...

Moderne Introduces Changelog to Bridge Source Control and Change Control for AI-Driven, Multi-Repository Software Engineering

Moderne, the Agent Tools company for AI-driven software engineering, today announced Moderne Changelog, a new capability that gives engineering teams and AI coding agents unified visibility over pull ...
Windows Report

GitHub Links Internal Repository Breach To TanStack Supply-Chain Attack

GitHub says the breach of roughly 3,800 internal repositories was tied to the wider TanStack npm supply-chain attack.

Fake OpenAI repository on Hugging Face pushes infostealer malware

A malicious Hugging Face repository that reached the platform's trending list impersonated OpenAI's "Privacy Filter" project ...
Harvard Medical School

Filling the repository

This is a section within Good practices for university open-access policies. Adopting an OA policy is easier than implementing one, and the hardest part of implementing a "green" or repository-based ...