5 articles connected to this topic.
Snyk unveils Agent Security and Evo AI-SPM GA at RSAC 2026 — a full-lifecycle enforcement architecture that secures AI coding agents like Claude Code, Cursor, and Devin across environment, artifact, and behavior, with Agent Scan, Studio, and Agent Guard.
After 39 malicious skills delivered macOS malware through OpenClaw registries, Chainguard is applying its container security playbook to AI agent skills — with continuous hardening, scoped permissions, and full audit trails.
Five malicious Rust crates targeted CI/CD pipelines to steal developer secrets. Meanwhile, an AI-powered bot called hackerbot-claw exploited GitHub Actions to hijack the Trivy security scanner and weaponize AI coding assistants against their own users.
Huntress researchers discovered malicious OpenClaw installers promoted through Bing AI search results, delivering info-stealers and proxy malware. Here's what happened and how to protect yourself.
Two critical CVEs in Anthropic's Claude Code exploited MCP configuration to achieve remote code execution and API key theft. What OpenClaw users should know about supply chain attacks on AI agents.