The Hacker News

Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push

CVE-2026-3854 (CVSS 8.7) enabled GitHub RCE via git push, risking cross-tenant access to millions of repositories.

GitHub Copilot shifts to usage-based pricing June 1 - why that's no surprise

Under the new approach, if you run out of credits, you can't use the service. GitHub plans to preview the new billing in ...

Checkmarx confirms LAPSUS$ hackers leaked its stolen GitHub data

Application security company Checkmarx has confirmed that the LAPSUS$ threat group leaked data stolen from its private GitHub ...

GitHub Copilot’s price shakeup could end cheap AI coding as we know it

We’re seeing the beginning of the end for flat-rate AI plans, starting with GitHub switching to usage-based pricing for its ...

GitHub will start charging Copilot users based on their actual AI usage

GitHub has announced that it will be shifting to a usage-based billing model for its GitHub Copilot AI service starting on ...
SecurityWeek

Claude Code, Gemini CLI, GitHub Copilot Agents Vulnerable to Prompt Injection via Comments

Anthropic’s Claude Code Security Review, Google’s Gemini CLI Action, and GitHub Copilot Agent hacked via prompt injection ...
Security Boulevard

GitHub Actions Supply Chain Attack: Trivy Breach & Workflow

Breakdown of the Trivy GitHub Actions attack, including workflow misconfigurations, token theft, and supply chain exposure.
Tbreak

Anthropic moves Claude Code to $100+ plans, sparking developer backlash

Developers are furious after Anthropic reportedly hiked Claude Code pricing from Dhs 75 to Dhs 370+ monthly. The AI coding tool vanished from the $20 Pro plan, forcing upgrades to enterprise tiers.
Analytics Insight

Best Python IDE in 2026: PyCharm vs VS Code Comparison

Overview:  Discover which Python IDE dominates in 2026 with a detailed comparison of performance, AI features, and ...

Anthropic leaks source code for Claude Code again: Here's what happened

Anthropic has exposed Claude Code's source code, with a packaging error triggering a rapid chain reaction across GitHub and the developer community, letting them copy it entirely ...
CSO Online

Critical Cursor bug could turn routine Git into RCE

A flaw in Cursor’s AI agent lets malicious repositories trigger arbitrary code execution through routine Git operations, now ...