GitHub

Microsoft adds domain libraries and Copilot integration to the quantum development kit

Don't miss, GitHub, Microsoft, News, open source, quantum computing, software /

Microsoft adds domain libraries and Copilot integration to the quantum development kit 2026-02-25 at 08:05 By Anamarija Pogorelec The Microsoft Quantum Development Kit (QDK) is an open-source toolkit that runs on laptops and in common development environments. It includes code, simulators, libraries, and workflows that work with Visual Studio Code and GitHub Copilot. Integration with […]

Microsoft adds domain libraries and Copilot integration to the quantum development kit Read More »

GitHub Issues Abused in Copilot Attack Leading to Repository Takeover

AI, Copilot, GitHub, prompt injection, RoguePilot, Vulnerabilities, vulnerability /

GitHub Issues Abused in Copilot Attack Leading to Repository Takeover 2026-02-24 at 14:26 By Ionut Arghire Attackers can inject malicious instructions in a GitHub Issue that are automatically processed by Copilot when launching a Codespace from that issue. The post GitHub Issues Abused in Copilot Attack Leading to Repository Takeover appeared first on SecurityWeek. This

GitHub Issues Abused in Copilot Attack Leading to Repository Takeover Read More »

Allama: Open-source AI security automation

Artificial Intelligence, cybersecurity, Don't miss, GitHub, News, open source, security operations, SOC, software /

Allama: Open-source AI security automation 2026-02-09 at 08:19 By Sinisa Markovic Allama is an open-source security automation platform that lets teams build visual workflows for threat detection and response. It includes integrations with 80+ types of tools and services typical in security operations, including SIEM systems, endpoint detection and response products, identity providers, and ticketing

Allama: Open-source AI security automation Read More »

VS Code Configs Expose GitHub Codespaces to Attacks

Application Security, GitHub, GitHub Codespaces, Vulnerabilities, vulnerability /

VS Code Configs Expose GitHub Codespaces to Attacks 2026-02-05 at 16:59 By Ionut Arghire VS Code-integrated configuration files are automatically executed in Codespaces when the user opens a repository or pull request. The post VS Code Configs Expose GitHub Codespaces to Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

VS Code Configs Expose GitHub Codespaces to Attacks Read More »

GitHub enables multi-agent AI coding inside repository workflows

Anthropic, code, GitHub, News, OpenAI, programming, software development /

GitHub enables multi-agent AI coding inside repository workflows 2026-02-05 at 13:02 By Anamarija Pogorelec GitHub has expanded Agents HQ, enabling AI coding agents such as GitHub Copilot, Claude by Anthropic, and OpenAI Codex to execute development tasks directly within GitHub and developer editors while preserving repository context, session history, and review workflows. Copilot Pro+ and

GitHub enables multi-agent AI coding inside repository workflows Read More »

Microsoft launches LiteBox, a security-focused open-source library OS

GitHub, Microsoft, News, open source, operating system, rust /

Microsoft launches LiteBox, a security-focused open-source library OS 2026-02-05 at 11:29 By Anamarija Pogorelec Microsoft has released LiteBox, a project intended to function as a security-focused library OS that can serve as a secure kernel for protecting a guest kernel using virtualization hardware. LiteBox was developed in collaboration with the Linux Virtualization Based Security (LVBS)

Microsoft launches LiteBox, a security-focused open-source library OS Read More »

Global Threat Map: Open-source real-time situational awareness platform

Don't miss, GitHub, Hot stuff, News, open source, software, threats /

Global Threat Map: Open-source real-time situational awareness platform 2026-02-04 at 08:32 By Mirko Zorz Global Threat Map is an open-source project offering security teams a live view of reported cyber activity across the globe, pulling together open data feeds into a single interactive map. It visualizes indicators such as malware distribution, phishing activity, and attack

Global Threat Map: Open-source real-time situational awareness platform Read More »

Open-source AI pentesting tools are getting uncomfortably good

Artificial Intelligence, cybersecurity, Don't miss, Expert analysis, Expert corner, GitHub, Hot stuff, IBS Software, News, open source, opinion, penetration testing, software /

Open-source AI pentesting tools are getting uncomfortably good 2026-02-02 at 09:10 By Help Net Security AI has come a long way in the pentesting world. We are now seeing open-source tools that can genuinely mimic how a human tester works, not just fire off scans. I dug into three of them, BugTrace-AI, Shannon, and CAI,

Open-source AI pentesting tools are getting uncomfortably good Read More »

Pompelmi: Open-source secure file upload scanning for Node.js

GitHub, News, Node.js, open source, scanner, scanning, software /

Pompelmi: Open-source secure file upload scanning for Node.js 2026-02-02 at 09:10 By Sinisa Markovic Software teams building services in JavaScript are adding more layers of defense to handle untrusted file uploads. An open-source project called Pompelmi aims to insert malware scanning and policy checks directly into Node.js applications before files reach storage or business logic.

Pompelmi: Open-source secure file upload scanning for Node.js Read More »

Hottest cybersecurity open-source tools of the month: January 2026

cybersecurity, Don't miss, GitHub, News, open source, software /

Hottest cybersecurity open-source tools of the month: January 2026 2026-01-29 at 08:06 By Anamarija Pogorelec This month’s roundup features exceptional open-source cybersecurity tools that are gaining attention for strengthening security across various environments. OpenAEV: Open-source adversarial exposure validation platform OpenAEV is an open source platform designed to plan, run, and review cyber adversary simulation campaigns

Hottest cybersecurity open-source tools of the month: January 2026 Read More »

CERT UEFI Parser: Open-source tool exposes UEFI architecture to uncover vulnerabilities

CERT, cybersecurity, Don't miss, firmware, GitHub, News, open source, scanning, software /

CERT UEFI Parser: Open-source tool exposes UEFI architecture to uncover vulnerabilities 2026-01-28 at 09:10 By Sinisa Markovic CERT UEFI Parser, a new open-source security analysis tool from the CERT Coordination Center has been released to help researchers and defenders examine the structure of Unified Extensible Firmware Interface (UEFI) software and identify classes of vulnerabilities that

CERT UEFI Parser: Open-source tool exposes UEFI architecture to uncover vulnerabilities Read More »

Brakeman: Open-source vulnerability scanner for Ruby on Rails applications

Don't miss, GitHub, News, open source, Ruby, scanner, scanning, software /

Brakeman: Open-source vulnerability scanner for Ruby on Rails applications 2026-01-26 at 08:00 By Anamarija Pogorelec Brakeman is an open-source security scanner used by teams that build applications with Ruby on Rails. The tool focuses on application code and configuration, giving developers and security teams a way to identify common classes of web application risk during

Brakeman: Open-source vulnerability scanner for Ruby on Rails applications Read More »

Microsoft introduces winapp, an open-source CLI for building Windows apps

GitHub, Microsoft, News, open source, software, Windows /

Microsoft introduces winapp, an open-source CLI for building Windows apps 2026-01-23 at 07:24 By Anamarija Pogorelec Microsoft has released winapp, a new command line interface aimed at simplifying the process of building Windows applications. The open-source tool targets developers who rely on terminal based workflows and want a consistent way to create, configure, and manage

Microsoft introduces winapp, an open-source CLI for building Windows apps Read More »

Bandit: Open-source tool designed to find security issues in Python code

code analysis, cybersecurity, DevSecOps, Don't miss, GitHub, News, open source, Python, scanning, software /

Bandit: Open-source tool designed to find security issues in Python code 2026-01-21 at 08:04 By Sinisa Markovic Bandit is an open-source tool that scans Python source code for security issues that show up in everyday development. Many security teams and developers use it as a quick way to spot risky coding patterns early in the

Bandit: Open-source tool designed to find security issues in Python code Read More »

Bytebase: Open-source database DevOps tool

DevOps, Don't miss, GitHub, News, software /

Bytebase: Open-source database DevOps tool 2026-01-19 at 09:19 By Sinisa Markovic Bytebase is a DevOps platform for managing database schema and data changes through a structured workflow. It provides a central place for teams to submit change requests, run reviews, and track executions across environments. The open-source edition is designed for organizations that want to

Bytebase: Open-source database DevOps tool Read More »

CISO Assistant: Open-source cybersecurity management and GRC

CISO, Compliance, cybersecurity, DevSecOps, Don't miss, framework, GitHub, GRC, Hot stuff, News, open source, Risk Management, software, strategy /

CISO Assistant: Open-source cybersecurity management and GRC 2026-01-14 at 13:25 By Mirko Zorz CISO Assistant is an open-source governance, risk, and compliance (GRC) platform designed to help security teams document risks, controls, and framework alignment in a structured system. The community edition is maintained as a self-hosted tool for organizations that want direct access to

CISO Assistant: Open-source cybersecurity management and GRC Read More »

AuraInspector: Open-source tool to audit Salesforce Aura access control misconfigurations

GitHub, Google Cloud, Mandiant, News, Salesforce, software /

AuraInspector: Open-source tool to audit Salesforce Aura access control misconfigurations 2026-01-13 at 17:45 By Anamarija Pogorelec Google and its Mandiant threat intelligence unit have released AuraInspector, an open-source tool aimed at auditing data access paths in Salesforce Experience Cloud applications. The tool focuses on the Aura framework, which underpins many Salesforce user interfaces and plays

AuraInspector: Open-source tool to audit Salesforce Aura access control misconfigurations Read More »

pfSense: Open-source firewall and routing platform

cybersecurity, Don't miss, GitHub, Hot stuff, network, News, open source, software /

pfSense: Open-source firewall and routing platform 2026-01-12 at 08:33 By Sinisa Markovic Firewalls, VPN access, and traffic rules need steady attention, often with limited budgets and staff. In that context, the open source pfSense Community Edition (CE) continues to show up in production environments, supported by a long-standing user community. pfSense CE is the free,

pfSense: Open-source firewall and routing platform Read More »

OpenAEV: Open-source adversarial exposure validation platform

Don't miss, Endpoint Security, Filigran, GitHub, Hot stuff, News, open source, security operations, software /

OpenAEV: Open-source adversarial exposure validation platform 2026-01-05 at 08:02 By Sinisa Markovic OpenAEV is an open source platform designed to plan, run, and review cyber adversary simulation campaigns used by security teams. The project focuses on organizing exercises that blend technical actions with operational and human response elements, all managed through a single system. Scenarios

OpenAEV: Open-source adversarial exposure validation platform Read More »

Superagent: Open-source framework for guardrails around agentic AI

agentic AI, Artificial Intelligence, Don't miss, GitHub, News, open source /

Superagent: Open-source framework for guardrails around agentic AI 2025-12-29 at 09:03 By Sinisa Markovic Superagent is an open-source framework for building, running, and controlling AI agents with safety built into the workflow. The project focuses on giving developers and security teams tools to manage what agents can do, what they can access, and how they

Superagent: Open-source framework for guardrails around agentic AI Read More »

Scroll to Top