New GitHub Zero-Day Exposed Developer Tokens to Attackers

A github.dev flaw could let attackers steal GitHub OAuth tokens through a one-click attack, exposing private repositories and ...
TechCrunch

WordPress.com Gains Support For OAuth2, Dedicated Developer Portal

In a blog post on the WordPress.com blog, Automattic‘s Justin Shreve this morning acknowledged his employer’s aspirations to turn WordPress.com into more of a platform than a mere Web-based blogging ...
CSO Online

Claude Code has an MCP security problem — and your developers are already using it

The Mitiga disclosure is the most recent, but it is not the first time Claude Code’s configuration model has created a ...