CVE-2025-59528: A Function() constructor-based arbitrary code execution vulnerability in Flowise's CustomMCP node is being actively exploited. Over 12,000 instances remain exposed on the internet.
A security scan of 50 open-source MCP servers found 61% lacked input validation. This article covers real vulnerabilities in high-profile servers like Playwright MCP and Puppeteer MCP, and examines when to skip MCP entirely and use CLI tools directly.
Artemis II broke the human distance record, but the more interesting part is that cislunar logistics are starting to feel real again. Orion's delays, L1 and L2, relay satellites, Gateway, and even Gundam all end up pointing to the same question: where do you put the footholds around the Moon?
Google Drive's AI ransomware detection and recovery feature is now generally available with 14x improved detection. But Google's history of false-positive account bans raises questions about relying on Drive as primary storage.
On April 2 2026 OpenAI scrapped Codex's per-message credit model for per-token billing tied to API consumption. ChatGPT Business dropped to $20, a Codex-only seat appeared, and Copilot's premium-request model is no longer the reference.
Benchmarking NII's LLM-jp-4-32B-A3B-thinking on EVO-X2 (Ryzen AI Max+ 395) with ROCm. 62.9 t/s vs Qwen3.5-35B-A3B's 44.7 t/s. Covers thinking control issues, KV cache trade-offs, knowledge cutoff, Japanese quality comparisons, code generation tests, and training data composition.
Linux kernel 7.0-rc removes PREEMPT_NONE, causing a ~49% PostgreSQL throughput regression. The scheduler maintainer refuses to revert the change, demanding PostgreSQL adopt the new RSEQ timeslice extension instead. Ubuntu 26.04 LTS ships with this kernel.
An Anthropic researcher used Claude Code to scan the entire Linux kernel source and unearthed a 23-year-old remotely exploitable heap overflow in NFSv4.0. Technical breakdown plus a reality check on what it costs for ordinary users to replicate this.
36 malicious npm packages disguised as Strapi CMS plugins were published by 4 sock-puppet accounts. 8 payload variants deployed Redis crontab injection, PostgreSQL direct access, reverse shells, and persistent implants. The target appears to be crypto exchange Guardarian.
Claude Code subscriptions no longer cover OpenClaw and other third-party tools. How this differs from the login-token issue, why the 'excessive usage' standard is opaque, and what it means that Anthropic is the only major vendor closing its ecosystem.
Follow-up to the axios compromise. Public reporting from GitHub, Socket, Google, and Microsoft shows UNC1069/Sapphire Sleet used the same social-engineering playbook against maintainers tied to Mocha, Fastify, Lodash, dotenv, and Node.js core.
A security researcher bypassed Claude Opus 4.6's policy evaluation with just four short prompts, generating attack code against live infrastructure. Plus 915 files exfiltrated from the sandbox.