The Hacker News

Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign

Bitwarden CLI 2026.4.0 was compromised via GitHub Actions in Checkmarx campaign, exposing secrets and distributing malicious ...
Hosted on MSN

Bitwarden CLI npm package hijacked in 93-minute supply chain breach

Bitwarden confirmed its CLI npm package was compromised for 93 minutes on April 22, 2026, in a sophisticated supply chain attack linked to the recent Checkmarx breach. Attackers published a malicious ...

Agents hooked into GitHub can steal creds – but Anthropic, Google, and Microsoft haven't warned users

Exclusive: Researchers who found the flaws scored beer money bounties and warn the problem is probably pervasive ...

Three AI coding agents leaked secrets through a single prompt injection. One vendor's system card predicted it

A prompt injection attack hit Claude Code, Gemini CLI, and Copilot simultaneously. Here's what all three system cards reveal ...
SecurityWeek

Claude Code, Gemini CLI, GitHub Copilot Agents Vulnerable to Prompt Injection via Comments

Anthropic’s Claude Code Security Review, Google’s Gemini CLI Action, and GitHub Copilot Agent hacked via prompt injection ...
Neowin

Google launches Gemini CLI GitHub Actions for automating PR reviews, issue triage, and more

Google has released Gemini CLI GitHub Actions, built on Gemini CLI, to help automate tasks like issue triage and pull request reviews in your repo. Google has announced Gemini CLI GitHub Actions, ...
Your Story

Google introduces Gemini CLI GitHub Actions with AI tools

Google has announced the release of Gemini CLI GitHub Actions, bringing its artificial intelligence model directly into developer workflows on GitHub. The tool is now available in free beta and offers ...
Security Boulevard

Bitwarden CLI Compromise Linked to Ongoing Checkmarx Supply Chain Campaign

The compromise of a version of Bitwarden's CLI is connected to the ongoing Checkmarx supply chain campaign, but differences in the operational methods of both incidents are making it difficult to ...