The Hacker News

Trojanized Gaming Tools Spread Java-Based RAT via Browser and Chat Platforms

Trojanized gaming tools and new Windows RATs like Steaelite enable data theft, ransomware, and persistent remote control.

From 'Shift Left' To 'Shift Smart': Why AI Agents Will Replace Static Analysis

In 2026 and beyond, organizations need to strengthen their shift-left strategy by embracing a new strategy: "shift smart." ...

Azul Warns Enterprises of Looming Java Application Modernization Crisis as Multiple Java Versions Near End of Support

Azul, the trusted leader in enterprise Java for today’s AI and cloud-first world, today warned enterprises of a growing Java application modernization crisis driven by technical debt and converging ...
PCMag

Anthropic Rolls Out Autonomous Vulnerability-Hunting AI Tool For Claude Code

The new tool, now testing as part of Claude Code, can scan codebases for security vulnerabilities and suggest targeted ...
InfoQ

Are You Missing a Data Frame? The Power of Data Frames in Java

Vladimir Zakharov explains how DataFrames serve as a vital tool for data-oriented programming in the Java ecosystem. By ...
IEEE

Optimizing Pre-Trained Code Embeddings With Triplet Loss for Code Smell Detection

Abstract: Code embedding represents code semantics in vector form. Although code embedding-based systems have been successfully applied to various source code analysis tasks, further research is ...
InfoWorld

How pairing SAST with AI dramatically reduces false positives in code security

In our study, a novel SAST-LLM mashup slashed false positives by 91% compared to a widely used standalone SAST tool. The promise of static application security testing (SAST) has always been the ...
Microsoft

RedCodeAgent: Automatic red-teaming agent against diverse code agents

Code agents are AI systems that can generate high-quality code and work smoothly with code interpreters. These capabilities help streamline complex software development workflows, which has led to ...
VentureBeat

Meet Aardvark, OpenAI’s security agent for code analysis and patching

An aardvark works in an office typing at a desktop PC while happy human workers mill about in the background. Credit: VentureBeat made with ChatGPT Positioned as a scalable defense tool for modern ...
sei.cmu

Automated Code Repair for C/C++ Static Analysis

This engineering experience paper details the application of design, development, and performance testing to an automated program repair tool we built that repairs C/C++ code. Static analysis (SA) ...