News

  1. REST API endpoints for Visual Studio Subscription management (github.blog)
  2. Xcode 27 runner image now in public preview (github.blog)
  3. Announcing .NET Modernization for Beginners (devblogs.microsoft.com)
  4. Your agent should understand what you see (blog.sentry.io)
  5. Building education technology that children can trust (www.raspberrypi.org)
  6. Improvements to secret scanning and public monitoring (github.blog)
  7. GitHub for Beginners: Your roadmap to mastering the GitHub essentials (github.blog)
  8. Exploring Hierarchical Interest Representation For Meta Ads Deep Funnel Optimization (engineering.fb.com)
  9. Helping small businesses with free, hands-on cyber consultancy (www.ncsc.gov.uk)
  10. Fluke - 821,100 breached accounts (haveibeenpwned.com)
  11. Goose Creek - 6,574,121 breached accounts (haveibeenpwned.com)
  12. Weekly Update 512: IoT Lockout Fail (troyhunt.com)
  13. GitHub Copilot in Visual Studio — June update (github.blog)
  14. GitHub Copilot for JetBrains expands BYOK capabilities (github.blog)
  15. Code scanning shows AI security detections on pull requests (github.blog)
  16. .NET and .NET Framework July 2026 servicing releases updates (devblogs.microsoft.com)
  17. CoreCLR Progress and the Mono Timeline for .NET MAUI (devblogs.microsoft.com)
  18. .NET 11 Preview 6 (github.com)
  19. .NET 11 Preview 6 is now available! (devblogs.microsoft.com)
  20. Dependabot version updates introduce default package cooldown (github.blog)
  21. A broken DNSSEC rollover took down .al. Now 1.1.1.1 tells you when validation is bypassed (blog.cloudflare.com)
  22. Security reviews now available in the GitHub Copilot app (github.blog)
  23. AI literacy begins with data literacy: An example from healthcare (www.raspberrypi.org)
  24. Manage secret scanning custom patterns via REST API (github.blog)
  25. GitHub Code Quality license estimate in public preview (github.blog)
  26. Building Service Topology at Scale: Architecture, Challenges, and Lessons Learned (netflixtechblog.com)
  27. A Git hook to prevent committing directly to main (alexwlchan.net)
  28. Modernizing the Meta Ads Service With an Open-Source Kernel Scheduler (engineering.fb.com)
  29. Hello World #30 out now: Critical thinking in the age of AI (www.raspberrypi.org)
  30. Introducing Precursor: detecting agentic behavior with continuous client-side signals (blog.cloudflare.com)
  31. UK and Allies urge critical sectors to improve defences against Russian intelligence targeting (www.ncsc.gov.uk)
  32. Mypy 2.3 Released (mypy-lang.org)
  33. Glendale Community College - 793,925 breached accounts (haveibeenpwned.com)
  34. Better tools made Copilot code review worse. Here’s how we actually improved it. (github.blog)
  35. Empowering global AI literacy: Translating Experience AI resources into Croatian (www.raspberrypi.org)
  36. Improving Smart Tiered Cache for Public Cloud Regions (blog.cloudflare.com)
  37. Enhancing your enrichment offer? Code Club is the answer (www.raspberrypi.org)
  38. Scale Faster with Managed Weaviate: Now in Public Preview on DigitalOcean (www.digitalocean.com)
  39. Modernize .NET applications in the GitHub Copilot app (devblogs.microsoft.com)
  40. How GitHub gave every repository a durable owner (github.blog)
  41. Why we cannot wait for better post-quantum signature algorithms (blog.cloudflare.com)
  42. Cyber Essentials Pathways: from proof of concept to cyber confidence (www.ncsc.gov.uk)
  43. When and what should I be logging? (blog.sentry.io)
  44. Symlinks Are Still Scary (And Yes, You Can Commit Them to Git) (snyk.io)
  45. Automating cross-repo documentation with GitHub Agentic Workflows (github.blog)
  46. GitHub availability report: June 2026 (github.blog)
  47. Connection Allowlist: a network firewall, built into the browser (scotthelme.ghost.io)
  48. How GitHub Copilot enables zero DNS configuration for GitHub Pages (github.blog)
  49. Multi-Tenancy Isn’t About Databases (codeopinion.com)
  50. Weekly Update 511: Live from my Riad in Marrakech (troyhunt.com)
  51. Introducing Meerkat: an experiment in global consensus (blog.cloudflare.com)
  52. Mypy 2.2 Released (mypy-lang.org)
  53. How to publish to PyPI using GitHub Actions securely (snarky.ca)
  54. Q1 2026 Innovation Graph update: Open source collaboration is accelerating worldwide (github.blog)
  55. Joy in learning computer science with Experience CS (www.raspberrypi.org)
  56. Cloudflare proudly joins the UK government's Cyber Resilience Pledge (blog.cloudflare.com)
  57. Cyber Shield: The path to an agentic AI future for cyber defence (www.ncsc.gov.uk)
  58. Introducing the Cloud Challenge Book 2026 (technology.blog.gov.uk)
  59. Getting Started with Anchor Positioning (www.joshwcomeau.com)
  60. Your Worker can now have its own cache in front of it (blog.cloudflare.com)
  61. Describing all my photos (alexwlchan.net)
  62. AI has torched the market for junior programmers (seldo.com)
  63. Moody Bible Institute - 2,303,416 breached accounts (haveibeenpwned.com)
  64. I don’t want to repeat repeat myself (alexwlchan.net)
  65. Swimming Pools, Pee, and Trying to Delete Your Data From the Internet (troyhunt.com)
  66. Agentic test processes, LLM benchmarks, and other notes on agentic coding from Galapagos Island (danluu.com)
  67. Process names: The forgotten Observability channel (theorangeone.net)
  68. How GitHub used secret scanning to reach inbox zero (github.blog)
  69. Connecting government and academia: Responsible AI Through Cloud Technology event (technology.blog.gov.uk)
  70. Built for Mass Scale: Hard-Won Lessons from Teams Running High Volume Inference Workloads in Production (www.digitalocean.com)
  71. Any Apple update can break our app. Here's how we find out first. (blog.sentry.io)
  72. Meta’s AI Storage Blueprint at Scale (engineering.fb.com)
  73. 6 security settings every GitHub maintainer should enable this week (github.blog)
  74. DigitalOcean Evaluations: Production Model and Router Testing for the Inference Stack (www.digitalocean.com)
  75. Making AI search smarter (blog.cloudflare.com)
  76. Your site, your rules: new AI traffic options for all customers (blog.cloudflare.com)
  77. Announcing the Monetization Gateway: charge for any resource behind Cloudflare via x402 (blog.cloudflare.com)
  78. Content Independence Day, one year on: building the business model for the agentic Internet (blog.cloudflare.com)
  79. Building more resilient CNI: what industry pen testers told us (www.ncsc.gov.uk)
  80. Top 1 Million Analysis – June 2026: The State of Crypto (scotthelme.ghost.io)
  81. Reading the agent traces is how you make the call your eval can't (blog.sentry.io)
  82. Unmasking the crawls with Attribution Business Insights (blog.cloudflare.com)
  83. Tails 7.9.1 (tails.net)
  84. How GitHub maintains compliance for open source dependencies (github.blog)
  85. MCP Beyond the Chat Window: Build Diagnostics in CI (devblogs.microsoft.com)
  86. 10 Years of Meta’s Commitment to Python (engineering.fb.com)
  87. Weekly Update 510: Live From Mallorca with Scott Helme (troyhunt.com)
  88. .NET 8 and .NET 9 will reach End of Support on November 10, 2026 (devblogs.microsoft.com)
  89. SkiaSharp 4.0 is here: announcing the first stable release (devblogs.microsoft.com)
  90. Packaging and Package Identity for .NET apps with WinApp CLI on Windows (devblogs.microsoft.com)
  91. WSL container is now available for public preview (devblogs.microsoft.com)
  92. Top 1 Million Analysis – June 2026: Ten Years of Web Security (scotthelme.ghost.io)
  93. GenPage: Towards End-to-End Generative Homepage Construction at Netflix (netflixtechblog.com)
  94. Next.js already traces your requests. Here's how to export them with OpenTelemetry. (blog.sentry.io)
  95. Rebuilding the computer room (alexwlchan.net)
  96. Snyk VulnBench JS 1.0: Can LLMs Find the Same Bugs Twice? (snyk.io)
  97. Sysco - 2,691,852 breached accounts (haveibeenpwned.com)
  98. American Tower - 216,601 breached accounts (haveibeenpwned.com)
  99. Privacy-Aware Infrastructure in the AI-Native Era: An Asset Classification Case Study (engineering.fb.com)
  100. Run Codex in the cloud – DigitalOcean for Codex is now available (www.digitalocean.com)
  101. How we built saga rollbacks for Cloudflare Workflows (blog.cloudflare.com)
  102. Celebrating over 15,000 young creators at the Coolest Projects 2026 online showcase (www.raspberrypi.org)
  103. NVD in the AI Era: The Case for Multi-Source Vulnerability Intelligence (snyk.io)
  104. Why I wrote PEP 832 -- virtual environment discovery (snarky.ca)
  105. Resilience Patterns Can Make Your System Less Resilient (codeopinion.com)
  106. A dead CDN, a wildcard, and an attack waiting to happen: the netdna-ssl.com takeover (scotthelme.ghost.io)
  107. Madison Square Garden Sports - 9,796,738 breached accounts (haveibeenpwned.com)
  108. A Note to Our Customers and Partners (snyk.io)
  109. Unlocking the Cloudflare app ecosystem with OAuth for all (blog.cloudflare.com)
  110. Weekly Update 509 (troyhunt.com)
  111. The White House's post-quantum executive order is an important milestone. It’s time to get to work (blog.cloudflare.com)
  112. How Meta Engineered Ultra-Narrow Batteries for AI Glasses (engineering.fb.com)
  113. How to design and present clear computing lessons (www.raspberrypi.org)
  114. Announcing Agentic Development Security (ADS) (snyk.io)
  115. The New Security Control Point: Governing AI Agents Inside the Execution Loop (snyk.io)
  116. What nearly 10,000 developer environments reveal about agentic development risk (snyk.io)
  117. When a vendor's breach becomes yours: lessons from the Klue incident (snyk.io)
  118. Toward More Controllable AI Video Editing: An Early Research Exploration at Netflix (netflixtechblog.com)
  119. Every Choice Changes Everything: The Show (blog.codinghorror.com)
  120. How Netflix Simplified Batch Compute with Kueue (netflixtechblog.com)
  121. How we found a bug in the hyper HTTP library (blog.cloudflare.com)
  122. Adopting AV1 for Real-Time Communication (RTC) at Scale (engineering.fb.com)
  123. Why No Passkeys? Naming the Top Sites That Still Don't Support Them (scotthelme.ghost.io)
  124. The AI shift in cyber risk: why leaders must act now (www.ncsc.gov.uk)
  125. A developer toolkit to make your website agent-ready (developer.chrome.com)
  126. Modern CSS theming with light-dark(), contrast-color(), and style queries (una.im)
  127. What can wonky APIs tell us about the web? (alexwlchan.net)
  128. JCPenney - 368,418 breached accounts (haveibeenpwned.com)
  129. The Data Canary: How Netflix Validates Catalog Metadata (netflixtechblog.com)
  130. Data Projects: Managing Data Assets at Netflix Scale (netflixtechblog.com)
  131. Predicting Risk in Content Launches: How Data-Driven Insights can Transform Launch Planning (netflixtechblog.com)
  132. The Evolution of Cassandra Data Movement at Netflix (netflixtechblog.com)
  133. Thinking Fast & Slow for a Personalized Notification System (netflixtechblog.com)
  134. A Human-Augmenting Agentic Workflow for Causal Inference (netflixtechblog.com)
  135. An update on FortiBleed — what’s happening with victim orgs (doublepulsar.com)
  136. Temporary Cloudflare Accounts for AI agents (blog.cloudflare.com)
  137. There Are No Instances in atproto (overreacted.io)
  138. Ralph Lauren - 139,903 breached accounts (haveibeenpwned.com)
  139. Operation Endgame 4.0 - 4,160,519 breached accounts (haveibeenpwned.com)
  140. Build your own vulnerability harness (blog.cloudflare.com)
  141. Celebrating 12 years of Project Galileo (blog.cloudflare.com)
  142. The 'vibe coding spectrum' approach to AI-assisted software development (www.ncsc.gov.uk)
  143. Alert: NCSC issues advice following global targeting of Fortinet firewalls and VPN gateways (www.ncsc.gov.uk)
  144. Unlock runtime insights: Introducing third-party developer tools for Chrome DevTools for agents (developer.chrome.com)
  145. The full Snyk AI Security Platform, free for open source maintainers (snyk.io)
  146. CFGI - 248,235 breached accounts (haveibeenpwned.com)
  147. Tails 7.9 (tails.net)
  148. Intelligent Terminal 0.1.1 is here: bash support, new slash commands, and more customization (devblogs.microsoft.com)
  149. Bringing more agent harnesses and frameworks to Cloudflare, starting with Flue (blog.cloudflare.com)
  150. AI-Powered MSBuild Investigation with the Microsoft Binlog MCP Server (devblogs.microsoft.com)
  151. Server-Side Tools Are Now Available for DigitalOcean Inference Engine (www.digitalocean.com)
  152. Stop Blaming Event-Driven Architecture (codeopinion.com)
  153. FortiBleed — 75k Fortinet firewalls have admin passwords cracked (doublepulsar.com)
  154. NCSC CEO: Hostile states linked to three-quarters of cyber attacks affecting UK's critical systems (www.ncsc.gov.uk)
  155. What's New in WebGPU (Chrome 149-150) (developer.chrome.com)
  156. A Day in the Life of an AI Engineer in Snyk's Lisbon Office (snyk.io)
  157. A Forgotten Contributor Account Compromised the Entire Mastra npm Package Scope (snyk.io)
  158. What students and teachers in England want from a computing curriculum (www.raspberrypi.org)
  159. June 2026 Stealer Logs - 56,278,397 breached accounts (haveibeenpwned.com)
  160. The Instructure Canvas Breach (2026): How XSS in a Support Ticket Compromised 275 Million Students (scotthelme.ghost.io)
  161. Weekly Update 508 (troyhunt.com)
  162. Berkadia - 305,216 breached accounts (haveibeenpwned.com)
  163. Infinite Campus - 137,123 breached accounts (haveibeenpwned.com)
  164. The Government Just Banned an AI Model. An Engineer's Perspective. (snyk.io)
  165. When a Government Pulls an AI Model: What the Fable 5 and Mythos 5 Suspension Means for Security Teams (snyk.io)
  166. Better, faster, less wrong: Enhancing issue grouping (blog.sentry.io)
  167. Young people’s computer programs get data from space (www.raspberrypi.org)
  168. Catch visual regressions with Snapshots, now in beta (blog.sentry.io)
  169. University of Nottingham - 454,635 breached accounts (haveibeenpwned.com)
  170. The Inference Alpha: Maximizing Frontier Models on AMD (www.digitalocean.com)
  171. Solving the ‘God Object’ Problem with Shared Identity (codeopinion.com)
  172. PowerToys 0.100 is here: new Shortcut Guide, Command Palette improvements and much more! (devblogs.microsoft.com)
  173. Weekly Update 507 (troyhunt.com)
  174. What We Learned Hiring 33 Engineers in Two Weeks (www.digitalocean.com)
  175. .NET 11 Preview 5 (github.com)
  176. Join the WebMCP origin trial (developer.chrome.com)
  177. Open-Sourcing dbsc-php: a Server Library for Device Bound Session Credentials in PHP (scotthelme.ghost.io)
  178. Works on my machine: how we use AI to reproduce reported bugs (blog.sentry.io)
  179. Using the Screen Capture API to record a browser window (alexwlchan.net)
  180. Baker Distributing - 102,935 breached accounts (haveibeenpwned.com)
  181. DBSC Beta at Report URI (scotthelme.ghost.io)
  182. Errors, traces, logs, metrics: when to reach for what (blog.sentry.io)
  183. Using Pytester to test my Playwright fixtures (alexwlchan.net)
  184. BCD Travel - 396,313 breached accounts (haveibeenpwned.com)
  185. Firewalling Docker with nftables (theorangeone.net)
  186. Model Evaluations: Prove Your Routing Policy Actually Works (www.digitalocean.com)
  187. Software supply chain attacks: check your dependencies (www.ncsc.gov.uk)
  188. Node-gyp Supply Chain Compromise: A Self-Propagating npm Worm That Hides in binding.gyp (snyk.io)
  189. Type Level Security: The future of secure AI code generation? (snyk.io)
  190. So You Have an AI Security Budget. Now what? (snyk.io)
  191. Tails 7.8.1 (tails.net)
  192. DentaQuest - 2,553,599 breached accounts (haveibeenpwned.com)
  193. The Team Behind Deploy: Shipping AI, the DigitalOcean Way (www.digitalocean.com)
  194. Powering the Inference Era: Inside the DigitalOcean Data & Learning Layer (www.digitalocean.com)
  195. Lights Out, Systems On: Validating Instant Power Loss Readiness (engineering.fb.com)
  196. Seamless PWA origin migration: Change domains without losing users (developer.chrome.com)
  197. Chrome 150 beta (developer.chrome.com)
  198. Welcoming the Philippine Government to Have I Been Pwned (troyhunt.com)
  199. The New Security Risks of the Agentic Development Lifecycle (snyk.io)
  200. Modular Monolith Boundaries Done Wrong (codeopinion.com)
  201. Open by Design: How NVIDIA and DigitalOcean Are Building the Stack for the Always-On Agentic Era (www.digitalocean.com)
  202. Announcing Intelligent Terminal 0.1 (devblogs.microsoft.com)
  203. Device Bound Session Credentials: Making Stolen Cookies Useless (scotthelme.ghost.io)
  204. What's new in DevTools (Chrome 149) (developer.chrome.com)
  205. New in Chrome 149 (developer.chrome.com)
  206. Protestware by open source maintainer to hinder agentic coding: The jqwik 1.10.0 Prompt Injection (snyk.io)
  207. The Inference Tax: How Prefix-Aware Routing Eliminates the Hidden Cost of LLMs at Scale (www.digitalocean.com)
  208. DigitalOcean Serverless Inference: A Deep Dive (www.digitalocean.com)
  209. 1,000 Data Breaches Later, the Disclosure Lag is Worse Than Ever (troyhunt.com)
  210. Edmunds - 177,860 breached accounts (haveibeenpwned.com)
  211. Weekly Update 506 (troyhunt.com)
  212. Miasma supply chain attack: malicious code found in @redhat-cloud-services npm packages (snyk.io)
  213. Atlas Menu - 63,926 breached accounts (haveibeenpwned.com)
  214. AI Disruptors: How the Next Generation of Business is Being Built (www.digitalocean.com)
  215. Rendering a chat thread in CSS and JavaScript (alexwlchan.net)
  216. New to the web platform in May (web.dev)
  217. Fix SCA issues at scale in your terminal with Snyk Remediation Agent in the CLI (snyk.io)
  218. How Relay Network Adopted AI Coding Securely and Built the Foundation for Agentic Development (snyk.io)
  219. OpenCode Now Supports DigitalOcean Inference Router for Intelligent Model Routing (www.digitalocean.com)
  220. Microsoft’s stance on zero day exploits is a dumpster fire of their own making (doublepulsar.com)
  221. How we cut build times by two-thirds by deleting our CMS (blog.sentry.io)
  222. Scalable, Cost-Efficient AI: Introducing Unified Batch Inference on DigitalOcean (www.digitalocean.com)
  223. Stop Joining Tables In Your “Modular” Monolith (codeopinion.com)
  224. Adopting open-source in local government  (technology.blog.gov.uk)
  225. Designing secure access with ZTNA (www.ncsc.gov.uk)
  226. April 2026 Baseline monthly digest (web.dev)
  227. Continuous Offensive Security: The Line We've Been Walking (snyk.io)
  228. You don’t need to pick one: how Sentry and OpenTelemetry work together (blog.sentry.io)
  229. SilverTorch: Index as Model — A New Retrieval Paradigm for Recommendation Systems (engineering.fb.com)
  230. Your agent can't fix what it can't see (blog.sentry.io)
  231. CSS vs. JavaScript (www.joshwcomeau.com)
  232. Build new features using built-in AI in Chrome (developer.chrome.com)
  233. Welcoming the Bhutanese Government to Have I Been Pwned (troyhunt.com)
  234. Weekly Update 505 (troyhunt.com)
  235. Laravel Lang Supply Chain Advisory (snyk.io)
  236. Request-Based Autoscaling Is Now Generally Available on App Platform (www.digitalocean.com)
  237. What's new in web extensions: I/O 2026 recap (developer.chrome.com)
  238. Snyk announces Anthropic updates: Evo integrates with Claude Enterprise, and Snyk Desk comes to Claude Desktop (snyk.io)
  239. Passkeys, Permissions Policy and Bug Hunting in 1Password's WebAuthn Wrapper (scotthelme.ghost.io)
  240. The product analytics you already have (blog.sentry.io)
  241. Securing The AI Revolution: How Snyk And Our Partners Are Scaling For The Future (snyk.io)
  242. Tails 7.8 (tails.net)
  243. Scaling Software Architecture Without Overengineering (codeopinion.com)
  244. How We Built DigitalOcean Inference Router (www.digitalocean.com)
  245. Open-Sourcing passkeys-php: A Security-Focused WebAuthn Library for PHP (scotthelme.ghost.io)
  246. A Day in the Life of a Strategy Co-Op in Snyk’s Boston Office (snyk.io)
  247. The AntV Supply Chain Campaign Expands: Microsoft's `durabletask` PyPI Package Compromised (snyk.io)
  248. XSS Is Deadly for Passkeys: The Hidden Risk of Attestation None (scotthelme.ghost.io)
  249. Mini Shai-Hulud Hits AntV: 300+ Malicious npm Packages Published via Compromised Maintainer Account (snyk.io)
  250. Passkeys 101: An Introduction to Passkeys and How They Work (scotthelme.ghost.io)
  251. Weekly Update 504 (troyhunt.com)