News

1. JCPenney - 368,418 breached accounts (haveibeenpwned.com)
2. The Data Canary: How Netflix Validates Catalog Metadata (medium.com)
3. Data Projects: Managing Data Assets at Netflix Scale (medium.com)
4. Predicting Risk in Content Launches: How Data-Driven Insights can Transform Launch Planning (medium.com)
5. The Evolution of Cassandra Data Movement at Netflix (medium.com)
6. Thinking Fast & Slow for a Personalized Notification System (medium.com)
7. A Human-Augmenting Agentic Workflow for Causal Inference (medium.com)
8. From Silos to Service Topology: Why Netflix Built a Real-Time Service Map (medium.com)
9. VMAF v1: Good Is Not Good Enough (medium.com)
10. An update on FortiBleed — what’s happening with victim orgs (doublepulsar.com)
11. AI credits consumed per user now in the Copilot usage metrics API (github.blog)
12. How we built an internal data analytics agent (github.blog)
13. A First Look at Scroll-Triggered Animations (css-tricks.com)
14. Temporary Cloudflare Accounts for AI agents (blog.cloudflare.com)
15. There Are No Instances in atproto (overreacted.io)
16. Upcoming deprecation of Opus 4.6 (fast) (github.blog)
17. Ralph Lauren - 139,903 breached accounts (haveibeenpwned.com)
18. MAI-Code-1-Flash available on more Copilot surfaces (github.blog)
19. Operation Endgame 4.0 - 153,527 breached accounts (haveibeenpwned.com)
20. Copilot code review: AGENTS.md support and UI improvements (github.blog)
21. Detecting Duplicate Issues – Public Preview and issue fields MCP support for GitHub Issues (github.blog)
22. Build your own vulnerability harness (blog.cloudflare.com)
23. Copilot-authored pull requests now included in author searches (github.blog)
24. Repository switcher generally available in global navigation (github.blog)
25. How pull request limits are cutting down the noise (github.blog)
26. Actions: Build custom images from custom images (github.blog)
27. Safer pull_request_target defaults for GitHub Actions checkout (github.blog)
28. Control who and what triggers GitHub Actions workflows (github.blog)
29. Celebrating 12 years of Project Galileo (blog.cloudflare.com)
30. Alert: NCSC issues advice following global targeting of Fortinet firewalls and VPN gateways (www.ncsc.gov.uk)
31. The 'vibe coding spectrum' approach to AI-assisted software development (www.ncsc.gov.uk)
32. The full Snyk AI Security Platform, free for open source maintainers (snyk.io)
33. CFGI - 248,235 breached accounts (haveibeenpwned.com)
34. Tails 7.9 (tails.net)
35. Intelligent Terminal 0.1.1 is here: bash support, new slash commands, and more customization (devblogs.microsoft.com)
36. Getting more from each token: How Copilot improves context handling and model routing (github.blog)
37. Bringing more agent harnesses and frameworks to Cloudflare, starting with Flue (blog.cloudflare.com)
38. AI-Powered MSBuild Investigation with the Microsoft Binlog MCP Server (devblogs.microsoft.com)
39. Server-Side Tools Are Now Available for DigitalOcean Inference Engine (www.digitalocean.com)
40. The Siren Song of ariaNotify() (css-tricks.com)
41. Stop Blaming Event-Driven Architecture (codeopinion.com)
42. FortiBleed — 75k Fortinet firewalls have admin passwords cracked (doublepulsar.com)
43. Introducing the Cloudflare One stack: agent-powered deployment (blog.cloudflare.com)
44. NCSC CEO: Hostile states linked to three-quarters of cyber attacks affecting UK's critical systems (www.ncsc.gov.uk)
45. A Day in the Life of an AI Engineer in Snyk's Lisbon Office (snyk.io)
46. A Forgotten Contributor Account Compromised the Entire Mastra npm Package Scope (snyk.io)
47. What are git worktrees, and why should I use them? (github.blog)
48. Prop For That (css-tricks.com)
49. Cloudflare DMARC Management is now generally available (blog.cloudflare.com)
50. What students and teachers in England want from a computing curriculum (www.raspberrypi.org)
51. GitHub Copilot CLI for Beginners: Overview of common slash commands (github.blog)
52. June 2026 Stealer Logs - 56,278,397 breached accounts (haveibeenpwned.com)
53. Accelerating researchers and developers building multilingual AI with a new open dataset (github.blog)
54. What’s !important #13: @function, alpha(), CSS Wordle, and More (css-tricks.com)
55. Growing the Cloudflare AI team with talent from Ensemble AI (blog.cloudflare.com)
56. The Instructure Canvas Breach (2026): How XSS in a Support Ticket Compromised 275 Million Students (scotthelme.ghost.io)
57. Weekly Update 508 (troyhunt.com)
58. Berkadia - 305,216 breached accounts (haveibeenpwned.com)
59. Infinite Campus - 137,123 breached accounts (haveibeenpwned.com)
60. The Government Just Banned an AI Model. An Engineer's Perspective. (snyk.io)
61. When a Government Pulls an AI Model: What the Fable 5 and Mythos 5 Suspension Means for Security Teams (snyk.io)
62. How we made GitHub Copilot CLI more selective about delegation (github.blog)
63. Why Isn’t My 3D View Transition Working? (css-tricks.com)
64. There’s no need to include ‘navigation’ in your navigation labels (css-tricks.com)
65. Scaling Security Insights: how we achieved a 10x increase in global scanning capacity (blog.cloudflare.com)
66. Better, faster, less wrong: Enhancing issue grouping (blog.sentry.io)
67. GitHub availability report: May 2026 (github.blog)
68. Making secret scanning more trustworthy: Reducing false positives at scale (github.blog)
69. Young people’s computer programs get data from space (www.raspberrypi.org)
70. Catch visual regressions with Snapshots, now in beta (blog.sentry.io)
71. University of Nottingham - 454,635 breached accounts (haveibeenpwned.com)
72. Join us for .NET Day on Agentic Modernization Livestream (devblogs.microsoft.com)
73. Give GitHub Copilot CLI real code intelligence with language servers (github.blog)
74. The Inference Alpha: Maximizing Frontier Models on AMD (www.digitalocean.com)
75. Solving the ‘God Object’ Problem with Shared Identity (codeopinion.com)
76. Creating Memorable Web Experiences: A Modern CSS Toolkit (css-tricks.com)
77. Route public traffic to private applications with Cloudflare (blog.cloudflare.com)
78. PowerToys 0.100 is here: new Shortcut Guide, Command Palette improvements and much more! (devblogs.microsoft.com)
79. Weekly Update 507 (troyhunt.com)
80. What We Learned Hiring 33 Engineers in Two Weeks (www.digitalocean.com)
81. .NET 11 Preview 5 (github.com)
82. .NET 11 Preview 5 is now available! (devblogs.microsoft.com)
83. .NET and .NET Framework June 2026 servicing releases updates (devblogs.microsoft.com)
84. Join the WebMCP origin trial (developer.chrome.com)
85. Defend against frontier cyber models: Cloudflare's architecture as customer zero (blog.cloudflare.com)
86. .NET at Microsoft Build 2026: Must watch sessions (devblogs.microsoft.com)
87. Open-Sourcing dbsc-php: a Server Library for Device Bound Session Credentials in PHP (scotthelme.ghost.io)
88. Scroll-Driven, Scroll-Triggered, Scroll States, and View Transitions (css-tricks.com)
89. Turning Cloudflare’s threat indicators into real-time WAF rules (blog.cloudflare.com)
90. Works on my machine: how we use AI to reproduce reported bugs (blog.sentry.io)
91. Using the Screen Capture API to record a browser window (alexwlchan.net)
92. Baker Distributing - 102,935 breached accounts (haveibeenpwned.com)
93. DBSC Beta at Report URI (scotthelme.ghost.io)
94. Your AI bill is out of control. Cloudflare can fix it now.  (blog.cloudflare.com)
95. Errors, traces, logs, metrics: when to reach for what (blog.sentry.io)
96. Using Pytester to test my Playwright fixtures (alexwlchan.net)
97. BCD Travel - 396,313 breached accounts (haveibeenpwned.com)
98. Firewalling Docker with nftables (theorangeone.net)
99. Model Evaluations: Prove Your Routing Policy Actually Works (www.digitalocean.com)
100. Another Stab at the Perfect CSS Pie Chart… Sans JavaScript! (css-tricks.com)
101. VoidZero is joining Cloudflare (blog.cloudflare.com)
102. Software supply chain attacks: check your dependencies (www.ncsc.gov.uk)
103. Node-gyp Supply Chain Compromise: A Self-Propagating npm Worm That Hides in binding.gyp (snyk.io)
104. So You Have an AI Security Budget. Now what? (snyk.io)
105. Type Level Security: The future of secure AI code generation? (snyk.io)
106. Tails 7.8.1 (tails.net)
107. DentaQuest - 2,553,599 breached accounts (haveibeenpwned.com)
108. The Team Behind Deploy: Shipping AI, the DigitalOcean Way (www.digitalocean.com)
109. Powering the Inference Era: Inside the DigitalOcean Data & Learning Layer (www.digitalocean.com)
110. Lights Out, Systems On: Validating Instant Power Loss Readiness (engineering.fb.com)
111. Enforcing the First AS in BGP AS_PATHs (blog.cloudflare.com)
112. offset-path (css-tricks.com)
113. Support your young people with our AI literacy resources (www.raspberrypi.org)
114. @custom-media (css-tricks.com)
115. @function (css-tricks.com)
116. Seamless PWA origin migration: Change domains without losing users (developer.chrome.com)
117. Chrome 150 beta (developer.chrome.com)
118. Welcoming the Philippine Government to Have I Been Pwned (troyhunt.com)
119. Dynamic Repartitioning for Time Series Workloads (medium.com)
120. The New Security Risks of the Agentic Development Lifecycle (snyk.io)
121. Modular Monolith Boundaries Done Wrong (codeopinion.com)
122. Open by Design: How NVIDIA and DigitalOcean Are Building the Stack for the Always-On Agentic Era (www.digitalocean.com)
123. Announcing Intelligent Terminal 0.1 (devblogs.microsoft.com)
124. ::search-text (css-tricks.com)
125. Device Bound Session Credentials: Making Stolen Cookies Useless (scotthelme.ghost.io)
126. Building confidence to teach AI in the classroom (www.raspberrypi.org)
127. What's new in DevTools (Chrome 149) (developer.chrome.com)
128. New in Chrome 149 (developer.chrome.com)
129. Protestware by open source maintainer to hinder agentic coding: The jqwik 1.10.0 Prompt Injection (snyk.io)
130. The Inference Tax: How Prefix-Aware Routing Eliminates the Hidden Cost of LLMs at Scale (www.digitalocean.com)
131. DigitalOcean Serverless Inference: A Deep Dive (www.digitalocean.com)
132. How we reduced core unit boot time from hours to minutes (blog.cloudflare.com)
133. Astro Markdown Component Utility for Any Framework (css-tricks.com)
134. 1,000 Data Breaches Later, the Disclosure Lag is Worse Than Ever (troyhunt.com)
135. Edmunds - 177,860 breached accounts (haveibeenpwned.com)
136. Weekly Update 506 (troyhunt.com)
137. Miasma supply chain attack: malicious code found in @redhat-cloud-services npm packages (snyk.io)
138. Atlas Menu - 63,926 breached accounts (haveibeenpwned.com)
139. AI Disruptors: How the Next Generation of Business is Being Built (www.digitalocean.com)
140. High-Throughput Graph Abstraction at Netflix: Part I (medium.com)
141. What’s !important #12: Safari Testing, ::checkmark, HTML Anchor Positioning, and More (css-tricks.com)
142. Rendering a chat thread in CSS and JavaScript (alexwlchan.net)
143. New to the web platform in May (web.dev)
144. How Relay Network Adopted AI Coding Securely and Built the Foundation for Agentic Development (snyk.io)
145. Fix SCA issues at scale in your terminal with Snyk Remediation Agent in the CLI (snyk.io)
146. OpenCode Now Supports DigitalOcean Inference Router for Intelligent Model Routing (www.digitalocean.com)
147. Charter - 4,851,517 breached accounts (haveibeenpwned.com)
148. Microsoft’s stance on zero day exploits is a dumpster fire of their own making (doublepulsar.com)
149. How we built Cloudflare's data platform and an AI agent on top of it (blog.cloudflare.com)
150. Can AI support creativity? What educators can learn from creative machine learning (www.raspberrypi.org)
151. How we cut build times by two-thirds by deleting our CMS (blog.sentry.io)
152. Kemper - 269,299 breached accounts (haveibeenpwned.com)
153. Scalable, Cost-Efficient AI: Introducing Unified Batch Inference on DigitalOcean (www.digitalocean.com)
154. Iran's Internet is partially restored, Cloudflare Radar data shows (blog.cloudflare.com)
155. Stop Joining Tables In Your “Modular” Monolith (codeopinion.com)
156. Adopting open-source in local government  (technology.blog.gov.uk)
157. Designing secure access with ZTNA (www.ncsc.gov.uk)
158. Celebrating young tech creators at Coolest Projects Ireland 2026 (www.raspberrypi.org)
159. April 2026 Baseline monthly digest (web.dev)
160. Mytheresa - 84,108 breached accounts (haveibeenpwned.com)
161. Continuous Offensive Security: The Line We've Been Walking (snyk.io)
162. You don’t need to pick one: how Sentry and OpenTelemetry work together (blog.sentry.io)
163. Ameriprise - 502,597 breached accounts (haveibeenpwned.com)
164. Doing More with GitHub Copilot as a .NET Developer (devblogs.microsoft.com)
165. Give Your .NET MAUI Android Apps a Material 3 Makeover (devblogs.microsoft.com)
166. SilverTorch: Index as Model — A New Retrieval Paradigm for Recommendation Systems (engineering.fb.com)
167. Your agent can't fix what it can't see (blog.sentry.io)
168. CSS vs. JavaScript (www.joshwcomeau.com)
169. Build new features using built-in AI in Chrome (developer.chrome.com)
170. Welcoming the Bhutanese Government to Have I Been Pwned (troyhunt.com)
171. 7-Eleven - 185,256 breached accounts (haveibeenpwned.com)
172. Weekly Update 505 (troyhunt.com)
173. Laravel Lang Supply Chain Advisory (snyk.io)
174. Request-Based Autoscaling Is Now Generally Available on App Platform (www.digitalocean.com)
175. What's new in web extensions: I/O 2026 recap (developer.chrome.com)
176. Announcing Agent Governance Toolkit MCP Extensions for .NET (devblogs.microsoft.com)
177. Announcing Claude Compliance API support with Cloudflare CASB (blog.cloudflare.com)
178. Snyk announces Anthropic updates: Evo integrates with Claude Enterprise, and Snyk Desk comes to Claude Desktop (snyk.io)
179. Improving C# Memory Safety (devblogs.microsoft.com)
180. Passkeys, Permissions Policy and Bug Hunting in 1Password's WebAuthn Wrapper (scotthelme.ghost.io)
181. The product analytics you already have (blog.sentry.io)
182. New in Chrome at Google I/O 2026 (developer.chrome.com)
183. Modernize authentication with passkeys, digital credentials, and more (developer.chrome.com)
184. Securing The AI Revolution: How Snyk And Our Partners Are Scaling For The Future (snyk.io)
185. Dragonica Lunaris - 126,293 breached accounts (haveibeenpwned.com)
186. Windows93 / Myspace93 - 46,105 breached accounts (haveibeenpwned.com)
187. Tails 7.8 (tails.net)
188. Scaling Software Architecture Without Overengineering (codeopinion.com)
189. How We Built DigitalOcean Inference Router (www.digitalocean.com)
190. Open-Sourcing passkeys-php: A Security-Focused WebAuthn Library for PHP (scotthelme.ghost.io)
191. A Day in the Life of a Strategy Co-Op in Snyk’s Boston Office (snyk.io)
192. The AntV Supply Chain Campaign Expands: Microsoft's `durabletask` PyPI Package Compromised (snyk.io)
193. Announcing Claude Managed Agents on Cloudflare (blog.cloudflare.com)
194. XSS Is Deadly for Passkeys: The Hidden Risk of Attestation None (scotthelme.ghost.io)
195. 15 updates from Google I/O 2026: Powering the agentic web with new capabilities, tools, and features in Chrome (developer.chrome.com)
196. Mini Shai-Hulud Hits AntV: 300+ Malicious npm Packages Published via Compromised Maintainer Account (snyk.io)
197. NuGet Package Pruning: Cleaner Dependencies and Actionable Vulnerability Reports (devblogs.microsoft.com)
198. Passkeys 101: An Introduction to Passkeys and How They Work (scotthelme.ghost.io)
199. Project Glasswing: what Mythos showed us (blog.cloudflare.com)
200. Weekly Update 504 (troyhunt.com)
201. Engineering Rigor in the AI Age: Building a Benchmark You Can Trust (eileencodes.com)
202. Anatomy of a WooCommerce Skimmer: A Technical Deep-Dive (scotthelme.ghost.io)
203. Thinking carefully before adopting agentic AI (www.ncsc.gov.uk)
204. Malicious node-ipc versions published to npm in suspected maintainer account compromise (snyk.io)
205. Beyond content: Helping teachers feel ready to teach AI (www.raspberrypi.org)
206. Start small, dream big with Code Club: Become an Incubator Partner (www.raspberrypi.org)
207. New ways to agentically build and edit dashboards (blog.sentry.io)
208. Waiting for website changes in the browser (alexwlchan.net)
209. Welcoming the Bahamian Government to Have I Been Pwned (troyhunt.com)
210. PyCon US 2026 (devblogs.microsoft.com)
211. Your Model Doesn't Matter. Your Infrastructure Does. (www.digitalocean.com)
212. Reel Friends: Building Social Discovery that Scales to Billions (engineering.fb.com)
213. A 0-click exploit chain for the Pixel 10: When a Door Closes, a Window Opens (googleprojectzero.blogspot.com)
214. .NET 11 Preview 4 (github.com)
215. Migrating Data Ingestion Systems at Meta Scale (engineering.fb.com)
216. Why Sagas Feel Broken (codeopinion.com)
217. Tails 7.7.3 (tails.net)
218. Welcoming the Bangladesh Government to Have I Been Pwned (troyhunt.com)
219. Mypy 2.1 Released (mypy-lang.org)
220. Labyrinth 1.1: Making End-to-End Encrypted Backups Even More Reliable  (engineering.fb.com)
221. Under Attack: Responding to the Rise of Info-Stealer Threats (scotthelme.ghost.io)
222. AI is not neutral: What recent research says about bias, identity, and power (www.raspberrypi.org)
223. 10 questions to ask when using AI models to find vulnerabilities (www.ncsc.gov.uk)
224. From vibe code to production-ready: observability for Next.js and Supabase apps (blog.sentry.io)
225. Watching for file changes on macOS (alexwlchan.net)
226. TanStack Npm Packages Compromised Inside The Mini Shai Hulud Supply Chain Attack (snyk.io)
227. Welcoming the Costa Rican Government to Have I Been Pwned (troyhunt.com)
228. Weekly Update 503 (troyhunt.com)
229. My not-so-static new static website (theorangeone.net)
230. Monitor Unreal Engine Game Performance with Application Metrics (blog.sentry.io)
231. Debugging Event-Driven Systems: 5 Problems Teams Create (codeopinion.com)
232. Torchbox's new status page (theorangeone.net)
233. Fixing JavaScript observability, one library at a time (blog.sentry.io)
234. Mypy 2.0 Relased (mypy-lang.org)
235. A day of big ideas at Coolest Projects USA Minnesota 2026 (www.raspberrypi.org)
236. Improved debugging for Expo apps with the React Native SDK (blog.sentry.io)
237. Weekly Update 502 (troyhunt.com)
238. Introducing Application Metrics: Track the signal, see the spike, jump to the trace (blog.sentry.io)
239. Powering the Inference Era: Inside the DigitalOcean AI-Native Cloud (www.digitalocean.com)
240. Introducing Apache Arrow Support in mssql-python (devblogs.microsoft.com)
241. Tails 7.7.2 (tails.net)
242. Embed Arbitrary Payloads into JPEGs without Special Tools (swharden.com)
243. Using Playwright to test my static sites (alexwlchan.net)
244. The new Run dialog: faster, cleaner, and more capable (devblogs.microsoft.com)
245. How Meta Is Strengthening End-to-End Encrypted Backups (engineering.fb.com)
246. Preparing for a ‘vulnerability patch wave’ (www.ncsc.gov.uk)
247. lightning PyPI Compromise: A Bun-Based Credential Stealer in Python (snyk.io)
248. Tails 7.7.1 (tails.net)
249. Building a basic cache with SQLite (alexwlchan.net)
250. Two commands to Sentry: now on Stripe Projects (blog.sentry.io)
251. Sentry's integration with Perforce is now generally available (blog.sentry.io)
252. Don't Panic: The Thymeleaf Template Injection That Only Hurts If You Let It (CVE-2026-40478) (snyk.io)
253. "A Mini Shai-Hulud Has Appeared": Bun-Based Stealer Hits SAP @cap-js and mbt npm Packages (snyk.io)
254. Bridging the Gap to Autonomous Fixes: Snyk and Atlassian Unveil Intelligent Remediation for Jira (snyk.io)
255. Introducing DigitalOcean AI-Native Cloud for Production AI Workloads (www.digitalocean.com)
256. Scroll-Driven Animations (www.joshwcomeau.com)
257. PowerToys 0.99 is here: new monitor controls, easier window management, and Dock upgrades (devblogs.microsoft.com)
258. How we built the most performant DeepSeek V3.2, MiniMax-M2.5 and Qwen 3.5 397B on DigitalOcean Serverless Inference (www.digitalocean.com)
259. Introducing Seer Agent: The answer is already in Sentry. Now you can ask for it. (blog.sentry.io)
260. Weekly Update 501 (troyhunt.com)
261. Malicious Release of elementary-data PyPI Package Steals Cloud Credentials from Data Engineers (snyk.io)
262. Python Environments Extension for VS Code- April Update (devblogs.microsoft.com)
263. Could your choice of metrics be harming your SOC? (www.ncsc.gov.uk)
264. Two years without cookies on the site, here's where we ended up (blog.sentry.io)
265. Introducing the New Agentic Architecture for Snyk Agent Fix: Faster, Smarter, and More Secure (snyk.io)
266. Qinglong task scheduler RCE vulnerabilities exploited in the wild for cryptomining (snyk.io)
267. DigitalOcean Dedicated Inference: A Technical Deep Dive (www.digitalocean.com)
268. HTTP GET requests with the Python standard library (alexwlchan.net)
269. New to the web platform in April (web.dev)
270. Beyond the Abyss Project Poseidon’s Quest for Zero-Downtime Reliability (www.digitalocean.com)
271. Microsoft Vibing — capturing screenshots and voice samples without governance (doublepulsar.com)
272. Executive Summary: Defending against China-nexus covert networks of compromised devices (www.ncsc.gov.uk)
273. Passkeys are more secure than traditional ways to log in (www.ncsc.gov.uk)
274. Defending against China-nexus covert networks of compromised devices (www.ncsc.gov.uk)
275. Supporting AI adoption for UK cyber defence (www.ncsc.gov.uk)
276. NCSC: Leave passwords in the past - passkeys are the future (www.ncsc.gov.uk)
277. International cyber agencies share fresh advice to defend against China-linked covert networks (www.ncsc.gov.uk)
278. From Incident Counting to SLIs: How DigitalOcean Rethought Availability (www.digitalocean.com)
279. When agents orchestrate agents, who's watching? (blog.sentry.io)
280. JPMorgan Just Published a Cyber To-Do List and Snyk Covers 8 of the 10 Items. How do you stack up? (snyk.io)
281. Hardcoding Security into Every Commit: The Future of Snyk Secrets (snyk.io)
282. Tails 7.7 (tails.net)
283. The LLM Inference Trilemma: Throughput, Latency, Cost (www.digitalocean.com)
284. Just Use Postgres as a Queue? (codeopinion.com)
285. Security considerations when using Passkeys on your website (scotthelme.ghost.io)
286. World-first NCSC-engineered device secures vulnerable display links (www.ncsc.gov.uk)
287. Weekly Update 500 (troyhunt.com)
288. Gymnasium Markt Indersdorf win Student Robotics Competition 2026! (studentrobotics.org)
289. Mastering the 600B+ Frontier: Optimizing Large Model Deployments on the Inference Cloud (www.digitalocean.com)