Americas

Asia

Europe

Oceania

Popular Topics

Topics

About

Policies

Our Network

More

Development Tools

Development Tools | News, how-tos, features, reviews, and videos

Latest from today

News
Image

Six more vulnerabilities found in n8n automation platform

Four of the holes, which allow remote code execution and command injection, are rated as critical.

By Howard Solomon
5 mins
Development ToolsSecurityVulnerabilities
News
Image

Unplugged holes in npm and yarn could let attackers bypass Shai-Hulud defenses

By Howard Solomon
4 mins
Development ToolsGitHubJavaScript
News
Image

Contagious Interview turns VS Code into an attack vector

By Shweta Sharma
3 mins
Development ToolsSecuritySocial Engineering
News

Possible software supply chain attack through AWS CodeBuild service blunted

By Howard Solomon
5 mins
Development ToolsGitHubVulnerabilities
News

From typos to takeovers: Inside the industrialization of npm supply chain attacks

By Shweta Sharma
6 mins
Development ToolsSecurityVulnerabilities
News

Output from vibe coding tools prone to critical security flaws, study finds

By John E. Dunn
5 mins
Artificial IntelligenceDevelopment ToolsVulnerabilities
News

Critical vulnerability in IBM API Connect could allow authentication bypass

By Lynn Greiner
5 mins
APIsApplication SecurityDevelopment Tools
News

High severity flaw in MongoDB could allow memory leakage

By Lynn Greiner
2 mins
Development ToolsSecurityVulnerabilities
News

Apache Tika hit by critical vulnerability thought to be patched months ago

By John E. Dunn
3 mins
Application SecurityDevelopment ToolsVulnerabilities

Articles

news

React2Shell vulnerability already being exploited by threat actors

It has been seen spreading cryptojacking malware and in attempts to steal cloud credentials from compromised machines.

By Howard Solomon
Dec 5, 2025 5 mins
CyberattacksCybercrimeDevelopment Tools
news

Developers urged to immediately upgrade React, Next.js

Critical vulnerability in React library should be treated by IT as they did Log4j - as an emergency, warns one expert.

By Howard Solomon
Dec 3, 2025 5 mins
DeveloperDevelopment ToolsVulnerabilities
news

Security researchers caution app developers about risks in using Google Antigravity

The tool for creating agents has vulnerabilities, say experts; Google says it will post known issues publicly as it works to address them.

By Howard Solomon
Nov 27, 2025 8 mins
Artificial IntelligenceDevelopment ToolsVulnerabilities
news

Developers left large cache of credentials exposed on code generation websites

The discovery by a security company reveals widespread insecure use of online tools in enterprises.

By John E. Dunn
Nov 25, 2025 5 mins
DeveloperDevelopment ToolsSecurity
news

North Korea’s ‘Job Test’ trap upgrades to JSON malware dropboxes

The long-running Contagious Interview campaign is now hiding BeaverTail and InvisibleFerret payloads inside JSON storage services.

By Shweta Sharma
Nov 17, 2025 3 mins
Development ToolsMalwareSecurity
news

Spam flooding npm registry with token stealers still isn’t under control

Goal is to steal Tea tokens by inflating package downloads, possibly for profit when the system can be monetized.

By Howard Solomon
Nov 14, 2025 7 mins
Application SecurityDevelopment ToolsOpen Source
news

How GlassWorm wormed its way back into developers’ code — and what it says about open source security

Weeks after being declared eradicated, GlassWorm is again infesting open source extensions using the same invisible Unicode and blockchain C2 tricks.

By Taryn Plumb
Nov 10, 2025 6 mins
CybercrimeDevelopment ToolsMalware
news

Malicious npm packages contain Vidar infostealer

Researchers say the malware was in the repository for two weeks, advise precautions to defend against malicious packages.

By Howard Solomon
Nov 6, 2025 6 mins
CybercrimeDevelopment ToolsMalware
news

Serious vulnerability found in Rust library

Hole in the TAR library and its forks could lead to remote code execution.

By Howard Solomon
Oct 22, 2025 6 mins
Development ToolsSecurityVulnerabilities
news

Self-propagating worm found in marketplaces for Visual Studio Code extensions

Treat this as an immediate security incident, CISOs advised; researchers say it’s one of the most sophisticated supply chain attacks they’ve seen, and it’s spreading.

By Howard Solomon
Oct 21, 2025 8 mins
CybercrimeDevelopment ToolsMalware
news

Threat actors are spreading malicious extensions via VS marketplaces

Report from Wiz also says developers are uploading extensions that include access tokens and other secrets.

By Howard Solomon
Oct 20, 2025 9 mins
CybercrimeDevelopment ToolsMalware
news

QR codes become the vehicle for malware in new technique

A newly-discovered malicious package with layers of obfuscation is disguised as a utility library, with malware essentially hiding in plain sight in embedded QR codes.

By Taryn Plumb
Sep 23, 2025 1 min
Development ToolsMalwareVersion Control Systems
View all

Resources

whitepaper

Visionary Voices: Orchestrating A Hybrid Workforce

Hear from Asymbl on how to successfully deploy digital labor to enhance efficiency, streamline workflows, and compliment a human workforce.

The post Visionary Voices: Orchestrating A Hybrid Workforce appeared first on Whitepaper Repository -.

By Salesforce & Asymbl
03 Mar 2026
Artificial IntelligenceBusiness OperationsProcess Improvement
Image
whitepaper

Industry Insider: Highspot for Partners

By Salesforce & Highspot
03 Mar 2026
Business OperationsROI and MetricsSalesforce.com
Image
whitepaper

Industry Insider: FormAssembly for Financial Services

By Salesforce & FormAssembly
13 Feb 2026
Business OperationsData ArchitectureProcess Improvement
Image
View all

Video on demand

video

The Rust language: Developing safer software

Get up to speed quickly on newcomer Rust, designed to create fast, system-level software. This two-minute animated explainer shows how Rust bypasses the vexing programming issues of memory and management.

Nov 1, 2017
Development ToolsEngineerOpen Source
    See all videos