ChatGPT and Codex flaws patched Feb 2026 exposed DNS exfiltration and GitHub tokens, raising enterprise AI security risks.

Command injection in Codex and a hidden outbound channel in ChatGPT exposed risks of credential theft and covert data ...

OpenAI patches ChatGPT vulnerability that allowed silent data exfiltration and fixes Codex flaw exposing GitHub tokens.

Microsoft is speeding up the delivery of its Visual Studio Code updates. Since last summer, the company has been making monthly releases, each with three or four patches and new functionality, but ...

New capabilities help teams understand database changes, monitor delivery performance, identify risk earlier, resolve issues faster, and centralize audit evidence, while extending governed database ...

For developers using AI, “vibe coding” right now comes down to babysitting every action or risking letting the model run unchecked. Anthropic says its latest update to Claude aims to eliminate that ...

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...

AI agents are moving fast, but without clear identity and control, they become chaos machines.

What happens when researchers think outside the box? Data gets exfiltrated through DNS.

That matters because Claude Code is designed to operate inside terminals, edit files, run commands and handle parts of software workflows with limited human intervention. Anthropic itself has ...

Security leaders are being told to treat “vibe coding” as a governance issue, not merely a productivity trend, as AI ...