Megalodon cyberattack infects 5,500 GitHub open-source repositories with malware, researchers say

Security researchers say 5,500 GitHub repositories have been affected by the attack.
Morning Overview on MSN

Trellix just admitted hackers broke into its own source-code repository — exposing the cybersecurity firm’s internal tools to outsiders

A cybersecurity company trusted to guard some of the largest networks in the country has confirmed that hackers penetrated its own source-code repository. Trellix, whose endpoint detection and ...
ZDNet

Linux kernel source code repositories get better security

Immediately after the 2011 break-in, the Linux Foundation began "mandating a fairly strict authentication policy for those developers who commit directly to the git repositories housing the Linux ...

GitHub investigates internal repositories breach claimed by TeamPCP

GitHub is investigating a breach of its internal repositories after the TeamPCP hacker group claimed to have accessed ...
Infosecurity-magazine.com

Open Source Repository Attacks Soar 700% in Three Years

The volume of malicious activity targeting upstream open source code repositories has hit triple-digit growth over the past three years, according to Sonatype. The security vendor claimed in newly ...

GitHub Says 3,800 Repositories Breached—TeamPCP Hackers Demand $50,000

A GitHub employee has unwittingly allowed 3,800 internal repositories to be breached after a device compromise with a poisoned VS Code extension.
VentureBeat

Google has quietly launched a GitHub competitor, Cloud Source Repositories

Join our daily and weekly newsletters for the latest updates and exclusive content on industry-leading AI coverage. Learn More Google hasn’t announced it yet, but the company earlier this year started ...
9to5google

Google Cloud launches Cloud Source Repositories beta for developers

When Google Code, Google’s free hosting for open source projects, began shutting down in 2015, the developer community was reasonably upset. Google seems to have taken some of that criticism to heart ...

Moderne Introduces Changelog to Bridge Source Control and Change Control for AI-Driven, Multi-Repository Software Engineering

Moderne, the Agent Tools company for AI-driven software engineering, today announced Moderne Changelog, a new capability that gives engineering teams and AI coding agents unified visibility over pull ...
ZDNet

Qt opens source code repositories

Since attending the company’s ‘developer days’ event in Munich in late Autumn of last year, I’ve been keeping an inquisitive eye open for news emanating from Nokia, Qt Software. Also, with Sun’s ...
Tech Times

Claude Code Plugins Get Official Directory: Anthropic Flags Unverified MCP Risks

Claude Code plugins now have an official Anthropic-managed directory at github.com/anthropics/claude-plugins-official, consolidating 30-plus internal and 15 vetted external Claude Code extensions behi ...
Geeky Gadgets

GenAI Agents AI Agent Repository An Open Source Goldmine

The GenAI Agents repository is an open-source goldmine for anyone passionate about developing AI agents. With its extensive collection of guides and tutorials, it serves as an invaluable resource for ...