CSO Online

Critical Cursor bug could turn routine Git into RCE

A flaw in Cursor’s AI agent lets malicious repositories trigger arbitrary code execution through routine Git operations, now patched in version 2.5.
Hosted on MSN

Critical RCE flaws patched in GitHub and Cursor IDE

Two major remote code execution vulnerabilities have been disclosed and patched in GitHub and the Cursor IDE. GitHub’s CVE-2026-3854 allowed authenticated users to execute arbitrary commands via a ...
XDA Developers on MSN

Windsurf 2.0 beats VS Code and Cursor at their own game

The IDE war has intensified ...

One command turns any open-source repo into an AI agent backdoor. OpenClaw proved no supply-chain scanner has a detection category for it

CLI-Anything generates SKILL.md files that AI agents trust and execute. Snyk found 13.4% of agent skills contain critical ...
Communications of the ACM

Good Vibes: AI Coding Tools and Platforms

Technology that helps write computer code is not new, but advances in generative AI (GenAI) and agentic AI have catapulted ...