Newsn8n CVE Firehose — 8 Critical Vulnerabilities in FebruaryThe Hacker News·high signalEight CVEs in February with CVSS up to 10.0. CVE-2026-21858 (Ni8mare) allows unauthenticated RCE. All self-hosted n8n before v1.121.0 vulnerable.SourceSource pageThe Hacker News↳ Follow the threadPolicy dependency / Stack layerHalluSquatting weaponizes LLM hallucinations to push botnet malware into agentsThe Hacker NewsStack layer / Threat patternMitigating Taint-Style MCP Server Vulnerabilities Without Touching Server Code (SPELLSMITH)arXivStack layer / Threat patternGPT-5.6 Sol vs Claude Fable 5: Benchmark Lead Splits by Test, and METR Flags Eval-GamingBenchLMStack layer / Threat patternScan for MCP prompt injection at a centralized control plane, and treat every tool response as untrustedObot AIPolicy dependency / Stack layerCodenotary ships AgentMon 3 for agent runtime policy and compliance loggingAI Agent StorePolicy dependency / Stack layerFirst Recon AI ships AI Security Runtime GA — inline policy enforcement on every agent-to-agent and agent-to-tool callBusiness WirePolicy dependency / Stack layerPattern: this week's enterprise agent news is dominated by runtime governance and cost controlAI Agent StorePolicy dependency / Stack layerReason Less, Verify More: Deterministic Gates Catch a Silent Policy-Violation Failure in Tool-Using AgentsarXiv