A new open-weights AI coding model is closing in on proprietary options

On Tuesday, French AI startup Mistral AI released Devstral 2, a 123 billion parameter open-weights coding model designed to ...
Dark Reading

Supply Chain Attacks Targeting GitHub Actions Increased in 2025

At this week's Black Hat Europe conference, two researchers urged developers to adopt a shared responsibility model for open ...
Fudzilla

Intel bins its open-source Gaudi user-space code

Another self-inflicted wound for Intel’s AI accelerator ambitions Troubled Chipzilla has abandoned the open-source user-space ...
Visual Studio Magazine

VS Code 1.107 (November 2025 Update) Expands Multi-Agent Orchestration, Model Management

Microsoft's November 2025 Visual Studio Code update (version 1.107) advances multi-agent orchestration for GitHub Copilot and ...
InfoWorld

AI-assisted coding creates more problems – report

Citing issues with logic, correctness, and security, a new report recommends specific guardrails for AI-generated code.
GovInfoSecurity

AI-Generated Code Ships Faster, But Crashes Harder

CodeRabbit analyzed 470 GitHub pull requests and found AI-generated code introduces more defects than human-written code ...
SecurityWeek

From Open Source to OpenAI: The Evolution of Third-Party Risk

Software supply chain attacks are evolving as open source and AI-generated code introduce new third-party risks. Learn how ...
CSO Online

AI in CI/CD pipelines can be tricked into behaving badly

Malicious content in issues or pull requests can trick AI agents in CI/CD workflows into running privileged commands in an attack researchers nicknamed PromptPwnd.

Docker open sources its Docker Hardened Images catalog

Docker Hardened Images (DHI) are production-ready images maintained by Docker to reduce vulnerabilities in container images.

CodeRabbit’s “State of AI vs Human Code Generation” Report Finds That AI-Written Code Produces ~ 1.7x More Issues Than Human Code

Review of AI-coauthored PRs and human-only PRs finds AI-Generated PRs have more bugs, more security risks and heavier review tails SAN FRANCISCO--(BUSINESS WIRE)--#AICodeGeneration--CodeRabbit, the ...
InfoWorld

GitHub Action Secrets aren’t secret anymore: exposed PATs now a direct path into cloud environments

Wiz has found threat actors exploiting GitHub tokens, giving them access to GitHub Action Secrets and, ultimately, cloud ...
ET CIO

10 Best CI/CD Tools for DevOps Teams in 2025

Discover the top 10 CI/CD tools of 2025 that enhance DevOps team efficiency, automating code building, testing, and deployment processes. Make informed decisions for your software development needs.