InfoQ

Oracle's OpenJDK Bans Generative AI Contributions While Oracle's GraalVM Allows Them

Two related, Oracle-backed projects published opposing policies on open-source contributions created with generative AI: The ...

The Hidden Risks of Vibe-Coding Business Apps

Generative AI has done something genuinely new for small business. A non-technical person can now describe what they want in ...
Telecompaper

Broadcom looks to strengthen security in Spring Java development projects

Broadcom has announced new security measures in development environments powered by its Java-based Spring framework, acquired ...

Ivanti: Max severity Sentry flaw allows code execution as root

Ivanti has patched two critical vulnerabilities in its Sentry secure mobile gateway solution, including a maximum-severity ...

SAP Patchday: Critical vulnerabilities in SAP NetWeaver and other weaknesses

For the June patch day, SAP is addressing 15 new vulnerabilities in several products. Three critical ones affect NetWeaver.
SDxCentral

Broadcom injects security updates into Spring, Java ecosystems

Broadcom rolled out security updates to the Spring and Java ecosystems tied to helping organizations navigate a surge in ...
SecurityWeek

OWASP Incubator Project Helps Developers Find and Fix Vulnerable Dependencies in Seconds

CVE Lite CLI helps developers quickly identify and fix vulnerable npm dependencies during development, reducing delays and ...

Microsoft took OpenClaw, wrapped it in enterprise security, and called it Scout

A few days after Google introduced its OpenClaw-based AI agent with Spark, Microsoft is now doing the same with Scout. The ...
Bleeping Computer

CISA flags two-year-old Oracle flaw as actively exploited in attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered government agencies to secure their systems against a high-severity Oracle WebLogic Server vulnerability that was patched ...

DeepSWE blows up the AI coding leaderboard, crowns GPT-5.5, and finds Claude Opus exploiting a benchmark loophole

DeepSWE puts GPT-5.5 atop the AI coding leaderboard while raising new questions about Claude Opus, SWE-Bench Pro, and ...
TechRepublic

Vibe Coding Cheat Sheet: Tools, Prompts, Security Tips, and More

This vibe coding cheat sheet explains how plain-language prompts can build apps fast, plus the planning, testing, and security checks needed. Software development is undergoing a seismic shift as vibe ...
Android

Vibe Coding Rise is Fueling a Surge in Security Vulnerabilities, Study Finds

Research from RedAccess highlights that thousands of apps created via vibe coding—AI tools used by non-developers—are exposing sensitive data, including medical and financial records. While platform ...