InfoWorld

FastAPI-based AI tools exposed to authentication bypass by flaw in Starlette framework

Researchers who found the bug warn that its Moderate rating understates a threat reaching across LLM gateways, MCP servers ...
SecurityWeek

‘SymJack’ Attack Turns AI Coding Agents Into Supply Chain Attack Delivery Systems

SymJack’ attack shows how AI coding agents can be manipulated through malicious repositories and MCP servers to steal data and enable software supply chain attacks.

CodeIntegrity raises $5M to put permanent guardrails on unpredictable AI agents

Cybersecurity startup CodeIntegrity raised $4.8M to solve the "non-deterministic" security flaws plaguing enterprise AI ...
ADTmag

Microsoft Open-Sources AI Safety Tools for Agent Developers

Microsoft has released two open-source tools, RAMPART and Clarity, to help developers test AI agents earlier in the software lifecycle and make safety checks a more repeatable part of the engineering ...