1. Perplexity is preparing to launch Comet for Android users, p…
Perplexity is preparing to launch Comet for Android users, prioritizing Pro subscribers and heavy users, with a waitlist open through Google Play for other users.
Category: Newsletter
2. PyTorch launched Helion, a domain-specific language that com…
PyTorch launched Helion, a domain-specific language that compiles Python code into autotuned Triton kernels, improving performance over torch.compile and hand-tuned implementations with simplified development.
Category: Newsletter
3. Kosong is an open-source abstraction layer unifying message …
Kosong is an open-source abstraction layer unifying message structures and tool orchestration for large language model applications, aiming to reduce vendor lock-in and simplify agent development.
Category: Newsletter
4. MCP Tool Filter uses semantic embeddings to reduce a large s…
MCP Tool Filter uses semantic embeddings to reduce a large set of server tools to the most contextually relevant subset for AI agents, optimizing speed and relevance within 10 milliseconds.
Category: Newsletter
5. Valdi compiles declarative TypeScript code directly into nat…
Valdi compiles declarative TypeScript code directly into native UI views for iOS, Android, and macOS, delivering native performance while preserving developer productivity and supporting instant updates.
Category: Newsletter
6. This plugin allows Opencode users to authenticate via ChatGP…
This plugin allows Opencode users to authenticate via ChatGPT OAuth and access OpenAI Codex backend without separate API credits, featuring pre-configured reasoning variants for diverse model use cases.
Category: Newsletter
7. A GitHub repository compiles LLM-based applications includin…
A GitHub repository compiles LLM-based applications including Retrieval-Augmented Generation, AI agents, multi-agent teams, and voice agents, utilizing models from major providers and open-source alternatives.
Category: Newsletter
8. The US Congressional Budget Office confirmed unauthorized ac…
The US Congressional Budget Office confirmed unauthorized access to its networks in a suspected foreign cyberattack potentially exposing emails with congressional offices.
Category: Newsletter
9. Three critical vulnerabilities in the runC container runtime…
Three critical vulnerabilities in the runC container runtime can allow attackers to gain root access on hosts by exploiting symlink races and bind-mount redirections, affecting Docker and Kubernetes environments.
Category: Newsletter
10. LandFall spyware exploited a zero-day in Samsung’s image cod…
LandFall spyware exploited a zero-day in Samsung’s image codec library, deploying via malicious images sent through WhatsApp to targeted Galaxy devices, enabling extensive spying and persistence.
Category: Newsletter
11. Attackers can evade Intune’s bring your own device (BYOD) en…
Attackers can evade Intune’s bring your own device (BYOD) enrollment restrictions by manipulating device OS reporting or check-in XML, suggesting new challenges for enterprise mobile device management security.
Category: Newsletter
12. Static SSH keys pose security risks; SSH certificates offer …
Static SSH keys pose security risks; SSH certificates offer time-limited authentication with centralized signing, demonstrated using Hashicorp Vault and Boundary for improved management and security.
Category: Newsletter
13. OpenSSF is addressing supply chain and AI-related security v…
OpenSSF is addressing supply chain and AI-related security vulnerabilities in financial services through model signing, MLSecOps frameworks, transparency tools, and policy engagement with US and EU authorities.
Category: Newsletter
14. ThreatLocker’s Defense Against Configurations tool scans sys…
ThreatLocker’s Defense Against Configurations tool scans systems daily to identify misconfigurations and unused admin accounts that lead to vulnerabilities, enabling remediation without additional integrations.
Category: Newsletter
15. RestrictedPython is a tool offering a subset of Python langu…
RestrictedPython is a tool offering a subset of Python language features designed for safely executing untrusted code by limiting language capabilities.
Category: Newsletter