AI Agent Reportedly Deletes Company’s Entire Database, Admits to Violating Guardrails

A Cursor AI agent deleted a company’s entire production database, ignoring instructions prohibiting it from running ...
SecurityWeek

1,800 Hit in Mini Shai-Hulud Attack on SAP, Lightning, Intercom

Over 1,800 developers were affected by the Mini Shai-Hulud supply chain attack that hit the PyPi, NPM, and PHP ecosystems ...
GitHub

A Chrome extension that puts your Claude.ai usage limits right below the chat composer. No API keys, no config, no pasted session tokens. If you're logged into Claude, it just ...

The fill color is blue while you're fine, turns amber at 70%, red at 90%. Thresholds are configurable. I kept running into the weekly limit on Claude without realizing I was close. Claude's own ...
The Hacker News

NIST Limits CVE Enrichment After 263% Surge in Vulnerability Submissions

The National Institute of Standards and Technology (NIST) has announced changes to the way it handles cybersecurity vulnerabilities and exposures (CVEs) listed in its National Vulnerability Database ...
The Hacker News

CPUID Breach Distributes STX RAT via Trojanized CPU-Z and HWMonitor Downloads

Unknown threat actors compromised CPUID ("cpuid[.]com"), a website that hosts popular hardware monitoring tools like CPU-Z, HWMonitor, HWMonitor Pro, and PerfMonitor, for less than 24 hours to serve ...
GitHub

Library public API snapshot testing for runtime exports and type declarations.

Captures your public API surface -- both runtime exports and type declarations -- into human-readable snapshot files that you commit alongside your code. When the API changes unexpectedly, you'll know ...