| Mobile Web

Search results for NPM

AI & Enterprise

Tech Insight: Why software supply chains are being breached quickly amid the spread of AI coding

A widely used software package, Axios, was hacked after attackers took over a maintainer account, added a new dependency and shipped an update. The added package installed a tailored remote-access trojan and erased traces, while many security tools failed to flag it. Andreessen Horowitz partners said the case shows software supply-chain risk rising as AI coding spreads. They cited research finding AI agents more often pick vulnerable versions and enable new attacks such as slopsquatting, while detection remains slow in the industry.

AI & Enterprise

Guardian AI agents gain traction amid supply chain security incidents

As AI agents increasingly automate tasks without humans, concerns are growing that they could behave like malware. Interest is rising in so-called guardian AI agents that monitor and control other agents and can alert staff or change agent actions when rules are breached. Startups and major tech firms are entering the space. The article also outlines recent software supply-chain attacks and other corporate and policy moves tied to AI security.

Industry

Claude Code leak highlights blind spot in memory demand, \'more semiconductors needed\'

The leak of internal source code for Anthropic’s AI coding agent Claude Code has led to industry expectations that demand for AI memory chips could be larger than previously estimated. The exposed code indicates high memory use even on a single developer PC, driven by multi-step agent workflows and always-on background modes such as KAIROS and AutoDream. The code also includes features that expand conversation capacity and multi-agent operation, implying faster growth in per-user memory consumption.