SecurityWeek

From Trivy to Broad OSS Compromise: TeamPCP Hits Docker Hub, VS Code, PyPI

After hacking Trivy, TeamPCP moved to compromise repositories across NPM, Docker Hub, VS Code, and PyPI, stealing over 300GB ...
Security Boulevard

46 Vulnerability Statistics 2026: Key Trends in Discovery, Exploitation, and Risk

Vulnerability attacks rose 56% in 2025. Explore 46 statistics on CVE disclosure, exploitation patterns, and industry impact to guide your 2026 security strategy. The post 46 Vulnerability Statistics ...

Halved latency: Web framework IHP 1.5.0 with new database layer

The web framework IHP 1.5.0 brings a new database layer, significant performance gains, and an improved modular architecture.
EurekAlert!

A cost-effective text-to-SQL approach based on adaptive refinement

The purpose of the Text-to-SQL task is to bridge the gap between natural language and SQL queries. Current approaches mainly rely on large language models (LLMs), but employing them for Text-to-SQL ha ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...