Patch now! Malicious code attacks on AI tool Langflow observed

A critical security vulnerability in Langflow allows attackers to push and execute malicious code on PCs. A security patch is ...

OpenAI brings plugins to Codex, closing some of the gap with Claude Code

There’s now a Plugins section in the Codex app that takes users to a searchable library of plugins meant to allow Codex to integrate tightly with some external service or application—examples include ...

Major Security Breach Of Critical AI Dependency Exposes Cloud Secrets

A cyber attack hit LiteLLM, an open-source library used in many AI systems, carrying malicious code that stole credentials ...
eWeek

Data science in the age of AI: From experimentation to scalable, governed systems

AI is transforming data science, but scaling it remains a challenge. Learn how organizations are building governed, ...
InfoWorld

OpenAI adds plugin system to Codex to help enterprises govern AI coding agents

The move lets IT administrators standardize and distribute agent behaviors across engineering teams, but OpenAI’s third-party ...
CSO Online

Attackers exploit critical Langflow RCE within hours as CISA sounds alarm

Attackers weaponized critical RCE within hours, prompting CISA to add the flaw to its KEV catalog and set an urgent patch ...
InfoQ

OpenAI Extends the Responses API to Serve as a Foundation for Autonomous Agents

OpenAI announced they are extending the Responses API to make it easier for developer to build agentic workflows, adding ...
Unite.AI

OpenAI Adds Plugin Marketplace to Codex

OpenAI has launched a plugin system for Codex, its AI coding agent, adding a curated directory of integrations that connect the tool to workplace apps including Slack, Notion, Figma, Gmail, and Google ...
eWeek

Why Reproducible Analytics Is Critical for AI in Healthcare and Life Sciences

AI adoption in healthcare and life sciences is accelerating at a rapid pace, driving advancements in clinical research, ...
Infosecurity Magazine

TeamPCP Targets Telnyx Package in Latest PyPI Software Supply Chain Attack

Socket and Endor Labs discovered a new TeamPCP campaign leading to the delivery of credential-stealing malware ...
Hackaday

This Week In Security: Second Verse, Worse Than The First

Isn’t there some claim events come in threes? After the extremely rare leak of the iOS Coruna exploit chain recently, now we have details from Google on a second significant exploit in the ...