GitHub fixes RCE flaw that gave access to millions of private repos

In early March, GitHub patched a critical remote code execution vulnerability (CVE-2026-3854) that could have allowed ...
Visual Studio Magazine

VS Code Curbs Token Use Ahead of Copilot's Controversial Usage-Based Billing Switch

Just two days after GitHub announced usage-based billing for Copilot, Microsoft shipped VS Code 1.118 -- under its new weekly release cadence -- with significant token efficiency improvements designed ...

Claude Code, Copilot and Codex all got hacked. Every attacker went for the credential, not the model.

Six teams exploited Claude Code, Copilot, Codex, and Vertex AI in nine months. Every attack hit runtime credentials that IAM ...

"GitHub is failing me, every single day, and it is personal": After Xbox and Windows, now GITHUB is in crisis — Microsoft, what are you doing?

One of GitHub's most staple contributors announced they are abandoning ship due to constant outages. GitHub's COO responds, ...

It's official: GitHub Copilot transitions to usage-based billing on June 1It's official: GitHub Copilot transitions to usage-based billing on June 1It's official: GitHub ...

Following a massive surge in GitHub Copilot usage that forced Microsoft to pause new sign-ups, a significant change of the ...
Dark Reading

Reverse Engineering With AI Unearths High-Severity GitHub Bug

Wiz used an AI reverse-engineering tool to pinpoint a vulnerability that previously would have been too costly and ...
Visual Studio Magazine

VS 2026 Joins VS Code with Integrated Cloud Agent: Assign a Task, Close the IDE, Get a PR

Visual Studio 2026 has further integrated GitHub Copilot's cloud agent to its Copilot Chat picker -- catching up to VS Code -- and the async workflow it enables, where a task runs on GitHub Actions ...
InfoQ

GitHub Targets Large Merge Problem with Stacked PRs

GitHub has launched a native stacked pull request workflow through a new CLI extension called gh-stack, closing a gap that ...
The Guardian

Claude’s code: Anthropic leaks source code for AI software engineering tool

Nearly 2,000 internal files were briefly leaked after ‘human error’, raising fresh security questions at the AI company Anthropic accidentally released part of the internal source code for its ...
TechCrunch

Anthropic says Claude Code subscribers will need to pay extra for OpenClaw usage

It’s about to become more expensive for Claude Code subscribers to use Anthropic’s coding assistant with OpenClaw and other third-party tools. According to a customer email shared on Hacker News, ...
BBC

China is winning one AI race, the US another - but either might pull ahead

In the second half of the 20th Century, it was the race to develop nuclear arms that occupied some of the finest minds in the US and the Soviet Union. Now the US finds itself in a different kind of ...
The Tech Edvocate

Unveiling the GitHub Vulnerability: A Deep Dive into CVE-2026-3854 and Its Implications

Spread the loveIntroduction In recent weeks, the cybersecurity community was rocked by the revelation of a critical vulnerability in GitHub’s infrastructure, identified as CVE-2026-3854. This flaw, ...