SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

The hackers compromised GitHub Action tags, then shifted to NPM, Docker Hub, VS Code, and PyPI, and teamed with Lapsus$.
腾讯网

Mozilla推出cq项目,被称为“智能体的Stack Overflow”

Mozilla正在构建一个名为cq的开源项目,该项目被其员工工程师Peter Wilson描述为"智能体的Stack Overflow",旨在让AI智能体能够发现和分享集体知识。