The Hacker News

Malicious JetBrains Plugins Steal AI API Keys as Chrome Extensions Capture Chatbot Chats

Researchers found 15 malicious JetBrains plugins posing as AI coding tools that exfiltrate OpenAI, DeepSeek, and SiliconFlow ...
Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...
GitHub

Sehab121/awesome-openclaw-skills-CN

claude-optimised - Guide for writing and optimizing CLAUDE.md files claude-team - Orchestrate multiple Claude Code workers via iTerm2 clawder - Use Clawder to sync identity, browse post cards, swipe ...