InfoQ

LinkedIn Leverages GitHub Actions, CodeQL, and Semgrep for Code Scanning

LinkedIn has rebuilt its static application security testing (SAST) pipeline using GitHub Actions and custom workflows, enabling consistent, enforceable code scanning across thousands of repositories.
InfoWorld

Beyond NPM: What you need to know about JSR

Here's how the JavaScript Registry evolves makes building, sharing, and using JavaScript packages simpler and more secure ...
The Hacker News

Claude Opus 4.6 Finds 500+ High-Severity Flaws Across Major Open-Source Libraries

Anthropic’s Claude Opus 4.6 identified 500+ unknown high-severity flaws in open-source projects, advancing AI-driven ...

I tried a Claude Code alternative that's local, open source, and completely free - how it works

I tried a Claude Code alternative that's local, open source, and completely free - how it works ...
The Hacker News

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Security researchers found two AI-branded VS Code extensions with 1.5M installs that covertly send source code and files to ...
InfoWorld

16 open source projects transforming AI and machine learning

From fine-tuning open source models to building agentic frameworks on top of them, the open source world is ripe with ...

With GPT-5.3-Codex, OpenAI pitches Codex for more than just writing code

Today, OpenAI announced GPT-5.3-Codex, a new version of its frontier coding model that will be available via the command line ...
ADTmag

JHipster 9.0.0-beta.2 lands with Spring Boot 4 upgrades and a clear message for Java teams: it's Java 21 time

JHipster 9.0.0-beta.2 deprecates the first beta to fix generator stability issues while advancing the platform to Spring Boot 4.0.2 and a new baseline of Java 21 (plus updated WebSocket security and ...

LittleHorse Introduces Business-as-Code Professional Services Practice to Speed Turning Microservices, Events, and AI Agents into Durable and Resilient Business Processes

Proven expertise co-develops projects or delivers turnkey solutions to enable new business capabilities using the LIttleHorse Saddle Command Center. LAS VEGAS, Jan. 27, 2026 /PRNewswire-PRWeb/ -- ...

Want local vibe coding? This AI stack replaces Claude Code and Codex - and it's free

Want local vibe coding? This AI stack replaces Claude Code and Codex - and it's free ...

Qwen3-Coder-Next offers vibe coders a powerful open source, ultra-sparse model with 10x higher throughput for repo tasks

On SWE-Bench Verified, the model achieved a score of 70.6%. This performance is notably competitive when placed alongside ...
Reuters

Exclusive: India proposes forcing smartphone makers to give source code in security overhaul

NEW DELHI, Jan 12 (Reuters) - India proposes requiring smartphone makers to share source code with the government and make several software changes as part of a raft of security measures, prompting ...