This week in AI updates: Anthropic acquires Bun, GPT-5.1-Codex-Max added to API, and more (December 5, 2025)This week in AI updates: Anthropic acquires Bun, GPT …

Bun is a JavaScript, TypeScript, and JSX toolkit, and Anthropic plans to incorporate it into Claude Code to improve ...

Critical React2Shell flaw actively exploited in China-linked attacks

Multiple China-linked threat actors began exploiting the React2Shell vulnerability (CVE-2025-55182) affecting React and ...
Windows Report

OpenAI’s GPT-5.1-Codex-Max Hits GitHub Copilot Public Preview

OpenAI’s GPT-5.1-Codex-Max is now in public preview on GitHub Copilot, offering advanced AI coding support across VS Code, ...

AWS launches Kiro powers with Stripe, Figma, and Datadog integrations for AI-assisted coding

Amazon Web Services’ new Kiro powers let AI coding assistants load specialized tools like Stripe and Figma on demand, cutting ...

Critical vulnerability in React JS framework has a near 100% chance to be exploited

Researchers have uncovered a critical security flaw that could have catastrophic consequences for web and private cloud ...
Dark Reading

DPRK's 'Contagious Interview' Spawns Malicious Npm Package Factory

North Korean attackers have delivered more than 197 malicious packages as part of ongoing state-sponsored activity to ...
Fox21Online

Vault12 Releases Open-Source Capacitor Plugin for Quantum-Safe Data Storage

Vault12, Inc., the pioneer of crypto inheritance, today announced the open-source release of the Shamir Secret Sharing plugin ...
OSTechNix

PocketBase Single File Go Backend

PocketBase is an open-source Go-based backend that bundles a SQLite database, auth, admin UI, and REST API into a single, ...
CSO Online

Contagious Interview attackers go ‘full stack’ to fool developers

The originators of the Contagious Interview cyberattack campaign are stitching GitHub, Vercel, and NPM together into a development and delivery pipeline to drop malware.