SecurityWeek

‘PackageGate’ Flaws Open JavaScript Ecosystem to Supply Chain Attacks

Vulnerabilities in the NPM, PNPM, VLT, and Bun package managers could lead to protection bypasses and arbitrary code ...

Critical sandbox escape flaw discovered in popular vm2 NodeJS library

A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.

OpenAI spills technical details about how its AI coding agent works

On Friday, OpenAI engineer Michael Bolin published a detailed technical breakdown of how the company’s Codex CLI coding agent ...

Meet Prism, OpenAI's free research workspace for scientists - how to try it

Prism helps you draft papers, source contextualized references, and more - just don't delegate your research to it.
MIT Technology Review

OpenAI’s latest product lets you vibe code science

OpenAI just revealed what its new in-house team, OpenAI for Science, has been up to. The firm has released a free LLM-powered ...

Razer’s testing a new tool for customizing its keyboards in your browser

Razer Synapse Web is an installation-free alternative to its Synapse 4 desktop configuration tool.

Android Auto's Best Kept Secret Is a Programmable Shortcut

The Custom Assistant Shortcut in Android Auto lets you set up complex actions and routines that can be activated with a single button press.

Where AI browsers fall short

Unlike regular search engines, AI browsers suffer from algorithmic inconsistency due to their black-box nature — and even ...