Chainguard's new Athena coalition uses AI to fix open-source flaws - before attackers exploit them

Chainguard will use AI to protect open-source code. Athena pools open-source users, developers, and maintainers. Others are ...
The Next Web

Java’s biggest language change in a decade is finally landing. It took 197,000 lines of code.

Project Valhalla's JEP 401 will bring value classes to JDK 28, removing object identity from Java types in a 197,000-line change twelve years in the making ...

The ‘Miasma’ worm source code briefly leaked on GitHub

The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain ...
Telecompaper

Broadcom looks to strengthen security in Spring Java development projects

Broadcom has announced new security measures in development environments powered by its Java-based Spring framework, acquired ...
techtimes

WWDC 2026 Day 3: Xcode 27 Neural Engine Completes Code Without Sending Source to Any Server

Wednesday is the hands-on day at WWDC 2026. Group Labs for Xcode 27, Foundation Models, Core AI, App Intents, and the parental-control API stack are running today, June 10, at Apple Park — the last ...
SDxCentral

Broadcom injects security updates into Spring, Java ecosystems

Broadcom rolled out security updates to the Spring and Java ecosystems tied to helping organizations navigate a surge in ...

Broadcom Expands Its Investment in Spring and Java Ecosystem Security to Prepare Customers for AI-Enabled Threats

PALO ALTO, Calif., June 08, 2026 (GLOBE NEWSWIRE) -- Today, Broadcom Inc. (NASDAQ: AVGO), a global technology leader that designs, develops, and supplies semiconductor and infrastructure software ...

Open-source security is a mess - IBM and Red Hat bet $5 billion and 20,000 engineers can fix it

Project Lightwell is an AI‑powered initiative to find and fix vulnerabilities in open-source software at an industrial scale. Here's what we know so far.

Fed up with vibe coders, dev sneaks data-nuking prompt injection into their code

The controversy over vibe coding reached a new high this week after a developer added hidden instructions to his open source Java testing app to sabotage projects performed by AI coding agents. The ...
Wired

A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale

A so-called software supply chain attack, in which hackers corrupt a legitimate piece of software to hide their own malicious code, was once a relatively rare event but one that haunted the ...