The Hacker News

SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files

CVE-2026-5760 (CVSS 9.8) exposes SGLang via /v1/rerank endpoint, enabling RCE through malicious GGUF models, risking server ...
Maine Public

Data center disputes have been local. But the midterms might change that

Anger over the data center boom has spilled into politics with voters unseating local politicians who support them. It's ...

5 weird Raspberry Pi projects that will freak out your friends

If you've got a Raspberry Pi and a just a little bit of coding know-how, you can make these weird projects that are sure to ...
CSO Online

RCE by design: MCP architectural choice haunts AI agent ecosystem

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...
GitHub

Claude Code Skills & Plugins — Agent Skills for Every Coding Tool

235 production-ready Claude Code skills, plugins, and agent skills for 12 AI coding tools. The most comprehensive open-source library of Claude Code skills and agent plugins — also works with OpenAI ...

Google shoehorned Rust into Pixel 10 modem to make legacy code safer

To protect the Pixel modem from zero-day attacks, Google focused on the DNS parser. As cellular features have migrated to ...
Geopolitical Monitor

Distributed Risk: Open-Source Software as Strategic Infrastructure

The 2024 XZ incident illustrates how open-source software (OSS) has become strategic infrastructure in the global economy, ...

Critical Marimo pre-auth RCE flaw now under active exploitation

A critical pre-authentication remote code execution (RCE) vulnerability in Marimo is now under active exploitation, leveraged ...
Developer Tech

Google TorchTPU enables native PyTorch AI execution

Google has launched TorchTPU, an engineering stack enabling PyTorch workloads to run natively on TPU infrastructure for ...
diginomica

PyTorch Foundation adds Helion and Safetensors - and the open AI stack gets a little harder ...

Mark Collier briefed me on two updates under embargo at KubeCon Europe 2026 last month: Helion, which opens up GPU kernel ...
InfoWorld

Microsoft’s new Agent Governance Toolkit targets top OWASP risks for AI agents

The open-source project maps directly to OWASP’s top 10 agentic AI threats, aiming to curb issues like prompt injection, ...
eWeekOpinion

AI 'Glasswing' Hunts Zero-Days at Warp Speed

Anthropic's new initiative, Project Glasswing, unites a dozen major organizations—including Apple, Google, Microsoft, AWS, ...