Три CVE в LiteLLM позволяют захватить ИИ-шлюз
Три связанные уязвимости LiteLLM оценены в CVSS 9,9. Разбираем, как обычный пользователь становится админом ИИ-шлюза и как защитить свою инфраструктур…
Programming
⚑ Report a ProblemLatest Programming news from Tech News
All topics
AI
agents
ai
api
architecture
automation
aws
beginners
career
claude
database
devchallenge
devops
javascript
learning
llm
machinelearning
mcp
opensource
performance
productivity
programming
python
react
rust
security
showdev
tutorial
typescript
webdev
A2A Java SDK 1.0.0: стабильный релиз для агентных приложений на Java
Вышел A2A Java SDK 1.0.0.Final — официальная Java-реализация протокола Agent2Agent. Разбираем ключевые изменения, как подключить SDK из Maven Central …
EchoBird — настольный менеджер ИИ-инструментов на Rust
EchoBird — бесплатный настольный менеджер для установки ИИ-агентов, локальных LLM и управления моделями. Узнайте, кому он пригодится и как устроен изн…
Google Launches Colab CLI for Developers, Automation, and AI Agents
Google has announced the Google Colab CLI, a command-line tool that allows developers and AI agents to interact with remote Colab runtimes directly fr…
Podcast: Craig McLuckie on Culture as a Team's Operating System in the AI Era
In this podcast, Shane Hastie, Lead Editor for Culture & Methods spoke to Craig McLuckie, co-creator of Kubernetes and CEO of Stacklok, about the impa…
Как я написал BGP-сервер и не сошёл с ума
BGPLite — open-source BGP route-server на C# и .NET 10. Он принимает BGP-сессии, динамически загружает префиксы через RIPE Stat и управляется через HT…
Schema-driven ORM для TypeScript: @cleverbrush/knex-schema и @cleverbrush/orm
Статья о том, как превратить TypeScript-схему в единый источник истины для работы с базой данных: из одного определения получить типы строк, имена таб…
Microsoft Open-Sources PostgreSQL Extension for In-Database Durable Execution
Recently open-sourced by Microsoft, pg_durable is a PostgreSQL extension that enables durable workflows to run natively inside the database, eliminati…
Microsoft pulled 73 GitHub repos after malware attack — but still won’t say who’s compromised
Last week, Microsoft shut down 73 of its own GitHub repositories following a malware attack that would steal developers’ credentials The post Mi…
Локальный инструмент для поиска закупок ЕИС по 44-ФЗ и 223-ФЗ: ключевые слова, фильтры и выгрузка в Excel
Смотрю на этот текст и понимаю, что все пользуются ИИ, просто кто-то это хорошо скрывает. Сейчас всё больше рабочих задач имеет смысл не просматривать…
ExtendDB: Open Source Amazon DynamoDB Compatible Adapter with Pluggable Storage Backends
AWS recently announced ExtendDB, a DynamoDB-compatible adapter that lets developers use the DynamoDB API with different storage backends, starting wit…
Cloudflare aqui-hires VoidZero: Did a piece of the open web just stabilize, or become more brittle?
Cloud network security and content delivery network company Cloudflare announced its acquisition of VoidZero this week, and VoidZero founder Evan The …
IPv6-зоны в URL: почему Go падает на fe80::%eth0 и как это чинить
Разбираем, как IPv6 link-local адреса с зонами ломают парсинг URL в Go, nginx и Python. Почему % нужно кодировать как %25 по RFC 6874 с 2013 года. Узн…
Why the need for humans won’t disappear in the age of autonomous databases
The promise of fully autonomous systems — databases that manage, heal, and optimize themselves amid rapidly increasing data stores — The p…
“A successful attack could be catastrophic”: Anthropic gives more groups access to Claude Mythos
Anthropic laid down some sobering words on Tuesday. “A successful attack on their codebase could be catastrophic. For most partners, The post &#…
JetBrains open-sources Mellum2 to go where Claude Code can’t
JetBrains announced on Monday it has open-sourced Mellum2, a 12B-parameter coding model aimed at the infrastructure layer of agentic AI The post JetBr…
BadHost Vulnerability Exposes AI Agents, Evaluators, and LLM Gateways
BadHost is a high-severity authentication bypass vulnerability in the widely used Python web framework Starlette, with 325 million weekly downloads. T…
Arm Open-Sources Metis, an AI Security Framework Outperforming Traditional SAST Tools
Arm has open-sourced Metis, an agentic AI security framework designed to autonomously uncover complex software vulnerabilities. Unlike traditional pat…
Why Linux creator Linus Torvalds gets angry hearing “99% of code is AI”
During his keynote at the recent Open Source Summit North America, Linux and Git creator Linus Torvalds did not mince The post Why Linux creator Linus…
Vendor neutrality isn’t magic: A hard look at the OpenTelemetry ecosystem
The OpenTelemetry (OTel) ecosystem provides us not only with a standard data format and transport mechanism for generating, processing, and The post V…
Why MotherDuck refuses to fork DuckDB
During the recent MCP Dev Summit North America held in New York City, The New Stack sat down with Till The post Why MotherDuck refuses to fork DuckDB …
Google pushes Pro, Ultra, and free users from open-source Gemini CLI to closed-source Antigravity CLI
Last week at Google I/O, the company announced the beginning of the end for Gemini CLI — that is, for everyone The post Google pushes Pro, …
Beyond the engine: 10 open source projects shaping how games actually get made
Check out these 10 open source tools that help game developers create art, animation, levels, audio, dialogue, debug UIs, and engine-ready assets. The…
Bintrail: MySQL Time-Travel Queries Using Indexed Binlogs
Bintrail is a recently introduced layer that brings point-in-time queries and row-history lookups to MySQL, the only major relational database lacking…
After becoming cloud computing’s telemetry standard, OpenTelemetry graduates into the AI infrastructure era
The Cloud Native Computing Foundation (CNCF) on Thursday announced the graduation of OpenTelemetry, the open source observability framework that has T…
Telegraf.js умер. Как мы оживили фреймворк, переписали ядро на Native Fetch и затащили Bot API 9.6
Каждый, кто пишет Telegram‑ботов на Node.js / TypeScript, знает про библиотеку Telegraf.js . Это был стандарт индустрии. Ключевое слово…
OpenAI Open-Sources Symphony, a SPEC.md for Autonomous Coding Agent Orchestration
OpenAI Symphony is an agent orchestrator that uses project-management tools, like issue trackers, as a control plan to coordinate multiple coding agen…
Why Block handed Goose to the Linux Foundation
Internal tools can become powerful external services. Such was the case with Amazon’s cloud, which became AWS. And so too The post Why Block han…
GitHub Dungeons: рогалик из вашего репозитория с Copilot CLI
Разработчик GitHub написал рогалик на Go с помощью Copilot CLI: BSP из хеша коммита, команды /delegate и /yolo, pre-commit хук со ставками. Попробуйте…
Dungeons & Desktops: 10 roguelikes that never die (because their communities won’t let them)
Roguelikes don’t die. They fork, mutate, get argued over, rewritten, abandoned, and revived again. Sometimes all at once. The post Dungeons & Desk…