Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...
Microsoft

From package to postinstall payload: Inside the Mastra npm supply chain compromise by Sapphire Sleet

A poisoned npm package infected 140+ projects with a hidden payload. This report highlights how to detect, hunt, and defend ...
GitHub

aashari/mcp-server-atlassian-jira

Transform how you manage and track your work by connecting Claude, Cursor AI, and other AI assistants directly to your Jira projects, issues, and workflows. Get instant project insights, streamline ...
LBC

MPs question if Army’s £6.3 billion Ajax armoured vehicle will ever be fit for use

The project has been dogged by concerns about the impact of noise and vibration on the crew, and the Public Accounts Committee warned there were “unrealistic expectations” about how soldiers will be ...
GitHub

Model Context Protocol servers

This repository is a collection of reference implementations for the Model Context Protocol (MCP), as well as references to community-built servers and additional resources. Important If you are ...
Android Authority

NewPipe, other open-source apps are preparing users for Google's sideloading crackdown on Android

Developers of open-source Android apps, including NewPipe, have begun warning users about Google’s upcoming sideloading restrictions. NewPipe’s developers refuse to comply with Google’s proposed ...