Claude Code leak used to push infostealer malware on GitHub

Threat actors are exploiting the recent Claude Code source code leak by using fake GitHub repositories to deliver Vidar ...

Anthropic says its leak-focused DMCA effort unintentionally hit legit GitHub forks

“The repo named in the notice was part of a fork network connected to our own public Claude Code repo, so the takedown ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
GitHub

MCP Proxy for AWS

The Problem: The official MCP specification supports OAuth-based authentication, but MCP servers on AWS can also use AWS IAM authentication (SigV4). Standard MCP clients don't know how to sign ...
GitHub

streamablehttp_client() pattern causes ClosedResourceError when used in LangGraph via langgraph dev

LangGraph expects main() to return a long-lived Runnable, and only calls .invoke() or .stream() later when an input is sent via API. However, in this code: The MCP streamablehttp_client context ...