Bitwarden's Command Line Interface (CLI) version 2026.4.0 has been compromised as part of an ongoing Checkmarx supply chain campaign. The attackers exploited a GitHub Action in Bitwarden's CI/CD pipeline to achieve this.
Keeping you up to date with the latest crawl
Bitwarden's Command Line Interface (CLI) version 2026.4.0 has been compromised as part of an ongoing Checkmarx supply chain campaign. The attackers exploited a GitHub Action in Bitwarden's CI/CD pipeline to achieve this.
Agent Vault is an open-source credential proxy and vault designed for agents. It allows for secure storage and management of sensitive information, such as credentials and tokens, and provides a centralized location for agents to access and use these credentials. The project aims to provide a secure and scalable solution for managing agent credentials.
The author, a co-founder of a successful startup, is embarking on a new venture to build a cloud platform, despite the challenges and pain that come with starting a new company. The author's motivation is not driven by a desire to solve a specific problem or address a social need, but rather by a personal passion for computers and a desire to create a cloud platform that is more flexible and powerful than existing solutions. The author is critical of current cloud offerings, citing issues with virtual machine architecture, disk performance, and networking costs.
Vadim Drobinin, an iOS engineer, recounts his experience of using his phone to track his progress while learning to shoot and cook venison from scratch. He ported a 2012 OpenCV paper and trained a state-of-the-art computer vision model to aid in the process. The dinner ultimately took longer than expected due to the complexity of the project.
Google has developed TorchTPU, a new engineering stack designed to run PyTorch natively on TPU infrastructure with peak efficiency. The stack features an "Eager First" approach with multiple execution modes and utilizes the XLA compiler to optimize distributed training across massive clusters.
GitHub experienced an incident affecting multiple services, resulting in disruptions to users. The issue has been resolved, and services are now operational.
Palantir employees are increasingly questioning their role in the company's work, particularly in relation to government contracts and data collection. Interviews with current and former employees, as well as internal Slack messages, suggest a workforce in turmoil. The company's involvement in projects such as immigration and customs enforcement has raised concerns among some employees about the ethics of their work.
In Brief