The Hacker News

GlassWorm Attack Uses Stolen GitHub Tokens to Force-Push Malware Into Python Repos

GlassWorm campaign injects malware into GitHub Python repos using stolen tokens since March 8, 2026, exposing developers to ...
InfoWorld

I ran Qwen3.5 locally instead of Claude Code. Here’s what happened.

You can now run LLMs for software development on consumer-grade PCs. But we’re still a ways off from having Claude at home.

荣耀MagicPad3 Pro曝光:支持Linux系统及“养虾”功能

2026年3月12日,随着移动计算设备技术的不断演进,一款名为荣耀MagicPad 3 ...

Oracle releases Java26, with new Java Verified Portfolio

At the JavaOne conference today, Oracle made a series of announcements related to a new Java Verified Portfolio (JVP) and new JDK Enhancement Proposals (JEPs).
腾讯网

龙虾爆出漏洞,斯坦福OpenJarvis重新定义本地AI Agent,附实测

安全审计一查, 512 个漏洞,其中 8 个是「严重」级别。更离谱的是,有人发现互联网上有超过 2 万个 OpenClaw 实例直接暴露在公网上,API 密钥、OAuth token 全都裸奔。