Stack layer / Threat pattern
Armadin details full sandbox escape in Anthropic's Claude Cowork; Anthropic disputes, silently patches
SiliconANGLE
Stack layer / Threat pattern
NSA issues official MCP hardening guidance after Amazon Q auto-execution CVEs (CVSS 8.5) enable AWS credential theft
Wiz
Stack layer / Contrast
Godot Bans Almost All 'Vibe-Coded' and Autonomous-Agent Contributions to Protect Volunteer Maintainers
The Register
Stack layer / Threat pattern
A New Security Category Emerges: Tools That Police the Coding Agent, Not the Code — Snyk's Evo Agentic Development Security
SiliconANGLE
Stack layer / Update thread
Perplexity Is Building 'Teammate,' a Long-Horizon Coding Agent to Rival Cursor and OpenAI
Business Insider
Stack layer / Threat pattern
Cross-model 'prompt laundering' and GuardFall shell-injection flaws hit major coding assistants
Threat-Modeling.com
Policy dependency / Stack layer
Guillermo Rauch Argues the Next Battle Is 'Splitting Models From Agents' — and Shows Vercel's Hand With Eve and Sandbox
TechCrunch
Stack layer / Update thread
Jim Fan: NVIDIA Open-Sources ASPIRE, and 'the Training Output Changes From Model Weights to a Continuously Expanding Skill Library'
BigGo Finance