Bleeping Computer

GitHub projects targeted with malicious commits to frame researcher

GitHub projects have been targeted with malicious commits and pull requests, in an attempt to inject backdoors into these projects. Most recently, the GitHub repository of Exo Labs, an AI and machine ...

Netherlands introduces code.overheid.nl as an alternative to GitHub for government software

Dutch government launches self-hosted Git platform to reduce reliance on US tech companies ...
SiliconANGLE

Millions of GitHub projects found vulnerable to exploit

Thousands of open-source code repositories on GitHub could be vulnerable to an old exploit, according to a report from Aqua Security Software Ltd.’s Nautilus research team published this week. Aqua ...
Morning Overview on MSN

This wild AI tool rips off open source code without breaking copyright

In early 2025, a class-action lawsuit against GitHub, Microsoft, and OpenAI over Copilot’s use of open-source training data ...

Warp is going open source and wants you to improve its coding tools with AI

While other open-source projects are rejecting vibe-coded contributions, Warp wants to accept AI code in a managed way.
Bleeping Computer

Over 3.1 million fake "stars" on GitHub projects used to boost rankings

GitHub has a problem with inauthentic "stars" used to artificially inflate the popularity of scam and malware distribution repositories, helping them reach more unsuspecting users. Stars are similar ...
InfoWorld

New AI tool targets critical hole in thousands of open source apps

The tool, created by university researchers, is designed to find and automatically create a patch for vulnerabilities in large repositories like GitHub, but it isn’t perfect yet. Dutch and Iranian ...