A large-scale alliance of established technology companies and financial institutions pools resources to coordinate remediation of open-source security gaps in response to AI-powered vulnerability discovery.
Despite its 2026 fork, the European Euro-Office Consortium failed to achieve independence from Russian OnlyOffice code and continued integrating its changes instead of developing its own.
A developer deliberately placed sabotage code in jqwik 1.10.0 to manipulate AI agents into deleting code, revealing a new security vulnerability in the open-source software supply chain.