How GitHub Is Securing the Software Supply Chain

In light of recent cyberattacks and growing security concerns, GitHub is taking immediate and direct action to secure the ...
InfoWorld

Spec-driven AI coding with GitHub’s Spec Kit

Hands on with GitHub’s open-source tool kit for steering AI coding agents by combining detailed specifications and a human in ...
C&EN

White House moves to kill chemical safety board, despite industry support

For the fourth time, President Donald J. Trump has proposed eliminating the Chemical Safety and Hazard Investigation Board (CSB), an independent body that investigates the causes of significant ...
GitHub

npm debug, color-convert, backslash, error-ex, simple-swizzle, is-arrayish, color-name, color-string have incorrect wildcard version in their malware advisory (2025-09-08)

color-convert 3.1.1 https://github.com/Qix-/color-convert/issues/121 GHSA-ch7m-m9rf-8gvv backslash 0.2.1 https://github.com/Qix-/node-backslash/issues/5 GHSA-m2xf ...
Bleeping Computer

Hackers steal 3,325 secrets in GhostAction GitHub supply chain attack

A new supply chain attack on GitHub, dubbed 'GhostAction,' has compromised 3,325 secrets, including PyPI, npm, DockerHub, GitHub tokens, Cloudflare, and AWS keys. The attack was discovered by ...
The Hacker News

GitHub Account Compromise Led to Salesloft Drift Breach Affecting 22 Companies

Salesloft has revealed that the data breach linked to its Drift application started with the compromise of its GitHub account. Google-owned Mandiant, which began an investigation into the incident, ...
Bleeping Computer

AI-powered malware hit 2,180 GitHub accounts in “s1ngularity” attack

Investigations into the Nx "s1ngularity" NPM supply chain attack have unveiled a massive fallout, with thousands of account tokens and repository secrets leaked. According to a post-incident ...
Axios

GOP support erodes for Epstein files petition

Rep. Thomas Massie speaks during a news conference with alleged victims of Jeffrey Epstein outside the Capitol on September 3. Photo: Chip Somodevilla/Getty Images ...
Los Angeles Times

Salesforce CEO Marc Benioff says he cut 4,000 support roles because of AI

Artificial intelligence already is replacing certain jobs at technology companies. Last week, Salesforce Chief Executive Marc Benioff said the San Francisco software giant was able to shrink the ...
Wall Street Journal

Why the FDA Doesn’t Support Covid Boosters Forever

The Food and Drug Administration last week approved Covid-19 vaccines for adults over 65 and for people 6 months and older who have one or more risk factors that put them at high risk of severe Covid.
MacRumors

Apple Releases Xcode 26 Beta 7 With GPT-5 Support and Claude Integration

Apple today released the latest version of Xcode 26, introducing several new features that developers can take advantage of. ChatGPT in Xcode now supports GPT-5, so developers can choose to start new ...
The Hacker News

Malicious Nx Packages in 's1ngularity' Attack Leaked 2,349 GitHub, Cloud, and AI Credentials

The maintainers of the nx build system have alerted users to a supply chain attack that allowed attackers to publish malicious versions of the popular npm package and other auxiliary plugins with data ...