software

Cynative: Open-source deep research agent

Cynative: Open-source deep research agent 2026-07-13 at 09:00 By Mirko Zorz Running a large language model against a live cloud account to hunt for security holes comes with an obvious hazard. An agent that holds real credentials and a mandate to poke around can delete a bucket, flip a permission, or leak a secret on […]

Cynative: Open-source deep research agent Read More »

The open source library holding up your stack might have one maintainer

The open source library holding up your stack might have one maintainer 2026-07-10 at 10:00 By Sinisa Markovic Every serious software product runs on code that someone else wrote and released for free. A web service leans on a cryptography library, a data pipeline pulls in a parser, and a mobile app ships a handful

The open source library holding up your stack might have one maintainer Read More »

20 open-source cybersecurity tools to keep your team ready for anything

20 open-source cybersecurity tools to keep your team ready for anything 2026-07-08 at 08:30 By Anamarija Pogorelec AI is changing how security teams find vulnerabilities, analyze code, test applications, and protect infrastructure. Developers are building tools to secure AI systems themselves, from coding agents and memory protection to model exposure discovery. This roundup covers recent

20 open-source cybersecurity tools to keep your team ready for anything Read More »

OpenSSH 10.4 arrives with security fixes and a post-quantum signature option

OpenSSH 10.4 arrives with security fixes and a post-quantum signature option 2026-07-06 at 16:05 By Anamarija Pogorelec Operators who manage remote access to Unix and Linux systems keep a close watch on OpenSSH, the software that carries most SSH traffic across the internet. The project released version 10.4 with eight security fixes, a set of

OpenSSH 10.4 arrives with security fixes and a post-quantum signature option Read More »

Omnigent: Open-source AI agent framework and meta-harness

Omnigent: Open-source AI agent framework and meta-harness 2026-07-06 at 08:30 By Sinisa Markovic Plenty of developers now keep several coding agents close at hand, reaching for Claude Code on one task and Codex or Cursor on the next. Each tool arrives with its own command line, its own handling of credentials, and its own way

Omnigent: Open-source AI agent framework and meta-harness Read More »

New ClamAV security patch closes seven scanner bugs dating back two decades

New ClamAV security patch closes seven scanner bugs dating back two decades 2026-07-06 at 01:30 By Sinisa Markovic Open source antivirus scanning sits inside mail gateways, file upload checks, and endpoint tooling at organizations of every size. Much of that work runs through ClamAV, the scanning engine maintained by Cisco’s Talos group. The project released

New ClamAV security patch closes seven scanner bugs dating back two decades Read More »

Nika: Open-source code analysis tool

Nika: Open-source code analysis tool 2026-07-01 at 09:00 By Mirko Zorz Many serious security bugs in web applications sit across several files at once. Request data enters through a controller, moves through data objects and service layers, and turns dangerous only when it reaches a sensitive operation such as a database query or a file

Nika: Open-source code analysis tool Read More »

Hottest cybersecurity open-source tools of the month: June 2026

Hottest cybersecurity open-source tools of the month: June 2026 2026-06-30 at 08:00 By Anamarija Pogorelec Presented here is a curated selection of noteworthy open-source cybersecurity solutions that have drawn recognition for their ability to enhance security postures across diverse settings. OWASP Agent Memory Guard: Stop AI agents from being weaponized through their own memory AI

Hottest cybersecurity open-source tools of the month: June 2026 Read More »

DarkMoon: Open-source AI pentesting platform

DarkMoon: Open-source AI pentesting platform 2026-06-29 at 08:30 By Mirko Zorz Penetration testing has long run on expert time, with specialists spending days probing a network or web application by hand. Manual engagements stretch across weeks, expert consultants run into thousands of dollars a day, and results vary with the tester. Automation promises to narrow

DarkMoon: Open-source AI pentesting platform Read More »

Agent Beacon: Open-source telemetry layer for AI agents

Agent Beacon: Open-source telemetry layer for AI agents 2026-06-22 at 08:30 By Mirko Zorz AI coding agents such as Claude Code, Codex CLI, Cursor, and Claude Cowork run on developer laptops, CI jobs, cloud environments, where they edit files, run commands, and call outside tools. Beacon, an open-source project from Asymptote Labs, configures telemetry for

Agent Beacon: Open-source telemetry layer for AI agents Read More »

The systemd 261 release brings a software TPM, new OS installer

The systemd 261 release brings a software TPM, new OS installer 2026-06-22 at 01:30 By Anamarija Pogorelec Linux distributions that ship systemd as their init system now have a new version to track. The systemd 261 update adds a cloud metadata subsystem, carries process state through kexec reboots, and continues a long-running effort to load

The systemd 261 release brings a software TPM, new OS installer Read More »

Homebrew tightens tap security, begins work on its interface

Homebrew tightens tap security, begins work on its interface 2026-06-18 at 07:30 By Anamarija Pogorelec Anyone who installs software through a third-party Homebrew tap runs Ruby code written by people outside the project, and that code runs without a sandbox. That risk sits at the center of Homebrew 6.0.0. Tap trust Homebrew now requires a

Homebrew tightens tap security, begins work on its interface Read More »

Everybody Is Vibe Coding But Nobody Told the Security Team

Everybody Is Vibe Coding But Nobody Told the Security Team 2026-06-08 at 19:16 By Danelle Au AI-driven development is not something organizations can or should block. But it must be governed. The post Everybody Is Vibe Coding But Nobody Told the Security Team appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Everybody Is Vibe Coding But Nobody Told the Security Team Read More »

DockSec: Open-source AI-powered Docker security scanner

DockSec: Open-source AI-powered Docker security scanner 2026-06-08 at 13:09 By Mirko Zorz DockSec is an OWASP Incubator Project that combines three container security scanners with a language-model layer for explanation and remediation. Created by Advait Patel, the Python tool runs Trivy, Hadolint, and Docker Scout against a developer’s Dockerfile and image, correlates the findings, returns

DockSec: Open-source AI-powered Docker security scanner Read More »

GitHub Copilot app launches as desktop home for AI coding agents

GitHub Copilot app launches as desktop home for AI coding agents 2026-06-08 at 07:15 By Sinisa Markovic GitHub introduced the Copilot app, a desktop application built for working with AI coding agents, at Microsoft Build 2026. The release expands GitHub’s Copilot product line beyond editor integrations and command-line tools into a dedicated workspace for directing

GitHub Copilot app launches as desktop home for AI coding agents Read More »

AgentGG: Open-source agentic SAST scanner

AgentGG: Open-source agentic SAST scanner 2026-06-05 at 09:24 By Mirko Zorz Static analysis tools have spent years matching source code against known-bad patterns and handing engineers long lists of candidate issues to triage by hand. AgentGG approaches the same job with AI agents that read the code, follow imports, walk the call graph, and confirm

AgentGG: Open-source agentic SAST scanner Read More »

Product showcase: Trend Micro Mobile Security detects scams in messages, QR codes, and websites

Product showcase: Trend Micro Mobile Security detects scams in messages, QR codes, and websites 2026-06-04 at 09:26 By Anamarija Pogorelec Trend Micro Mobile Security for iOS protects devices from potentially harmful websites while browsing, blocks ads and personal information trackers, helps users avoid unsafe Wi-Fi networks, and monitors data usage. The app is available for

Product showcase: Trend Micro Mobile Security detects scams in messages, QR codes, and websites Read More »

OWASP Agent Memory Guard: Stop AI agents from being weaponized through their own memory

OWASP Agent Memory Guard: Stop AI agents from being weaponized through their own memory 2026-06-01 at 08:19 By Mirko Zorz AI agents keep memory across sessions. Conversation history, vector stores, scratchpads, and RAG indexes persist between runs, and anything written into that store becomes a privileged input the agent reads back later. An attacker who

OWASP Agent Memory Guard: Stop AI agents from being weaponized through their own memory Read More »

Vigolium: Open-source vulnerability scanner

Vigolium: Open-source vulnerability scanner 2026-05-27 at 09:24 By Anamarija Pogorelec Vigolium, an open-source vulnerability scanner that combines deterministic scanning with AI-driven auditing, launched its initial open-source release this month. The project ships 235+ scanner modules and an in-process agent runtime called olium that handles autonomous endpoint discovery, attack planning, and finding triage. The tool exposes

Vigolium: Open-source vulnerability scanner Read More »

CVE Lite CLI: Open-source dependency vulnerability scanner

CVE Lite CLI: Open-source dependency vulnerability scanner 2026-05-20 at 09:34 By Mirko Zorz Dependency vulnerability scanning in JavaScript and TypeScript projects has long sat at the end of the development pipeline. Pull requests get opened, continuous integration runs, and a security scanner returns a list of CVE identifiers that developers then have to triage hours

CVE Lite CLI: Open-source dependency vulnerability scanner Read More »

Scroll to Top