New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts.
InfoWorld

Google’s Gemma 4 shines on local systems – both big and small

We tried out Google’s new family of multi-modal models with variants compact enough to work on local devices. They work well.
Analytics Insight

How to Master Python for Data Science Fast (2026 Beginner Guide)

Overview Structured Python learning path that moves from fundamentals (syntax, loops, functions) to real data science tools ...
eWeek

Anthropic Debuts ‘Repeatable Routines’ in Major Claude Code Automation Update

Anthropic introduces “repeatable routines” in Claude Code, bringing AI-powered automation and a redesigned workspace to ...
eWeek

Gemini 3.1 Flash TTS: Google AI Supports 70+ Languages, Multiple Accents

Google’s Gemini 3.1 Flash TTS adds audio tags, 70-plus languages, and SynthID watermarking for more controllable AI-generated ...

Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware ...