software development – Page 11 – Experimental News Clipping Site

Embrace The Red: I Spent $500 To Test Devin For Prompt Injection So That You Don’t Have To

Aug 6, 2025

—

by

Source URL: https://embracethered.com/blog/posts/2025/devin-i-spent-usd500-to-hack-devin/ Source: Embrace The Red Title: I Spent $500 To Test Devin For Prompt Injection So That You Don’t Have To Feedly Summary: Today we cover Devin from Cognition, the first AI Software Engineer. We will cover Devin proof-of-concept exploits in multiple posts over the next few days. In this first post, we…

Gemini: Meet your new AI coding teammate: Gemini CLI GitHub Actions

Aug 6, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://blog.google/technology/developers/introducing-gemini-cli-github-actions/ Source: Gemini Title: Meet your new AI coding teammate: Gemini CLI GitHub Actions Feedly Summary: Today, we’re introducing Gemini CLI GitHub Actions. It’s a no-cost, powerful AI coding teammate for your repository. It acts both as an autonomous agent for critical rou… AI Summary and Description: Yes Summary: The introduction of Gemini…

Docker: Everyone’s a Snowflake: Designing Hardened Image Processes for the Real World

Aug 5, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.docker.com/blog/hardened-image-best-practices/ Source: Docker Title: Everyone’s a Snowflake: Designing Hardened Image Processes for the Real World Feedly Summary: Hardened container images and distroless software are the new hotness as startups and incumbents alike pile into the fast-growing market. In theory, hardened images provide not only a smaller attack surface but operational simplicity. In practice,…

Docker: How Docker MCP Toolkit Works with VS Code Copilot Agent Mode

Aug 4, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.docker.com/blog/mcp-toolkit-and-vs-code-copilot-agent/ Source: Docker Title: How Docker MCP Toolkit Works with VS Code Copilot Agent Mode Feedly Summary: In the rapidly evolving landscape of software development, integrating modern AI tools is essential to boosting productivity and enhancing the developer experience. One such advancement is the integration of Docker’s Model Context Protocol (MCP) Toolkit with…

The Register: Mozilla flags phishing wave aimed at hijacking trusted Firefox add-ons

Aug 4, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/08/04/mozilla_add_on_phishing/ Source: The Register Title: Mozilla flags phishing wave aimed at hijacking trusted Firefox add-ons Feedly Summary: Devs told to exercise ‘extreme caution’ with emails disguised as account update prompts Mozilla is warning of an ongoing phishing campaign targeting developers of Firefox add-ons.… AI Summary and Description: Yes Summary: Mozilla has issued a…

Embrace The Red: Cursor IDE: Arbitrary Data Exfiltration Via Mermaid (CVE-2025-54132)

Aug 4, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://embracethered.com/blog/posts/2025/cursor-data-exfiltration-with-mermaid/ Source: Embrace The Red Title: Cursor IDE: Arbitrary Data Exfiltration Via Mermaid (CVE-2025-54132) Feedly Summary: Cursor is a popular AI code editor. In this post I want to share how I found an interesting data exfiltration issue, the demo exploits built and how it got fixed. When using Cursor I noticed that…

Simon Willison’s Weblog: The ChatGPT sharing dialog demonstrates how difficult it is to design privacy preferences

Aug 3, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Aug/3/privacy-design/ Source: Simon Willison’s Weblog Title: The ChatGPT sharing dialog demonstrates how difficult it is to design privacy preferences Feedly Summary: ChatGPT just removed their “make this chat discoverable" sharing feature, after it turned out a material volume of users had inadvertantly made their private chats available via Google search. Dane Stuckey, CISO…

Slashdot: 5 Million People Tried Microsoft’s AI Coding Tool ‘GitHub Copilot’ in the Last 3 Months

Aug 3, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://developers.slashdot.org/story/25/08/03/037202/5-million-people-tried-microsofts-ai-coding-tool-github-copilot-in-the-last-3-months?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: 5 Million People Tried Microsoft’s AI Coding Tool ‘GitHub Copilot’ in the Last 3 Months Feedly Summary: AI Summary and Description: Yes Summary: Microsoft’s AI coding assistant, GitHub Copilot, has now reached 20 million users, showcasing significant growth in adoption, particularly among enterprise clients. The increase in users indicates…

Embrace The Red: Turning ChatGPT Codex Into A ZombAI Agent

Aug 2, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://embracethered.com/blog/posts/2025/chatgpt-codex-remote-control-zombai/ Source: Embrace The Red Title: Turning ChatGPT Codex Into A ZombAI Agent Feedly Summary: Today we cover ChatGPT Codex as part of the Month of AI Bugs series. ChatGPT Codex is a cloud-based software engineering agent that answers codebase questions, executes code, and drafts pull requests. In particular, this post will demonstrate…

Slashdot: Anthropic Revokes OpenAI’s Access To Claude Over Terms of Service Violation

Aug 2, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://developers.slashdot.org/story/25/08/01/2237220/anthropic-revokes-openais-access-to-claude-over-terms-of-service-violation?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: Anthropic Revokes OpenAI’s Access To Claude Over Terms of Service Violation Feedly Summary: AI Summary and Description: Yes Summary: The text discusses Anthropic revoking OpenAI’s API access due to violations of terms of service, emphasizing the competitive dynamics within AI development. This situation highlights the importance of compliance with…

Tag: software development