Axios 1.14.1 and 0.30.4 injected malicious [email protected] after npm compromise on March 31, 2026, deploying ...

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...

During a recent penetration test, we came across an AI-powered desktop application that acted as a bridge between Claude ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

LiteLLM, a massively popular Python library, was compromised via a supply chain attack, resulting in the delivery of ...

Attackers weaponized critical RCE within hours, prompting CISA to add the flaw to its KEV catalog and set an urgent patch ...

Cloudflare says dynamically loaded Workers are priced at $0.002 per unique Worker loaded per day, in addition to standard CPU ...

OpenAI announced they are extending the Responses API to make it easier for developer to build agentic workflows, adding ...

This role offers hands-on exposure to Smart Energy Metering, IoT systems, Embedded Linux validation, and Microsoft Azure ...

写在最前面，2月28日通义实验室AgentScope团队发布了自研的独立部署开源桌面Agent工具：CoPawhttps://copaw.agentscope.io/CoPaw是整体架构上类似openclaw的工具，用的agentscope框架搭建， ...

报告日期：2026-02-28 关键词： Agent Skills, MCP, OpenClaw, A2A, Agentic AI, 模块化架构一、谁提出了从 Agent 到 Skills 的转变？1.1 起源：Anthropic ...