Widely used Trivy scanner compromised in ongoing supply-chain attack

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...
Visual Studio Magazine

Microsoft Sharpens AI Toolkit for VS Code in Foundry Update

Microsoft's February 2026 Foundry update includes broader platform changes, but the most immediate developer-facing news for VS Code users is an AI Toolkit refresh centered on tool discovery, agent ...
GitHub

ENTSO-E API Python Package

Easy access to all ENTSO-E Transparency Platform API endpoints Well-documented, easy to use and highly consistent with the API Automatically splits up large requests into multiple smaller calls to the ...
The Hacker News

Malicious npm Packages Harvest Crypto Keys, CI Secrets, and API Tokens

Cybersecurity researchers have disclosed what they say is an active "Shai-Hulud-like" supply chain worm campaign that has leveraged a cluster of at least 19 malicious npm packages to enable credential ...