The Hacker News

Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration

Claude Code flaws allow remote code execution and API key theft via untrusted repositories; three bugs fixed across 2025–2026 releases.

Previously harmless Google API keys now expose Gemini AI data

Google API keys for services like Maps embedded in accessible client-side code could be used to authenticate to the Gemini AI ...
SecurityWeek

Claude Code Flaws Exposed Developer Devices to Silent Hacking

Vulnerabilities in Anthropic’s Claude Code tool could have allowed attackers to silently gain control of a developer’s computer.
GitHub

Bridge any LangGraph agent to OpenAI's Responses API format with zero configuration.

langgraph-responses-gateway is a lightweight Python package that exposes any LangGraph agent or multi-agent system as an OpenAI Responses API endpoint. This enables seamless integration with modern AI ...
GitHub

VittoriaDB - Local Vector Database for AI Development

VittoriaDB is a high-performance, embedded vector database designed for local AI development and production deployments. Built with simplicity and performance in mind, it provides a zero-configuration ...
SecurityWeek

VS Code Configs Expose GitHub Codespaces to Attacks

VS Code-integrated configuration files are automatically executed in Codespaces when the user opens a repository or pull request. The automatic execution of VS Code-integrated configuration files when ...
Morningstar

Oasis Urges Aoki Shareholders to Protect Aoki and Vote AGAINST the Company’s Proposed Takeover Defense Measures (Stock Code: 3549 JT)

Oasis Management Company Ltd. (“Oasis”) is the manager to funds that beneficially own approximately 11.8% of drugstore operator KUSURI NO AOKI HOLDINGS CO., LTD. (3549 JT) (“Kusuri No Aoki” or “Aoki” ...