Stolen Checkmarx credentials used to push malicious KICS images to Docker Hub; users must rotate credentials and pin by digest.

Enterprise deployment of ClickHouse blocked by security teams due to CVEs in base images; Docker Hardened Images offer compliant path forward.

Docker's Coding Agent Sandboxes team deploys a fleet of 7 autonomous AI agents that test, triage, and fix bugs, shipping code faster via reasoning-based CI skills.

Black Duck and Docker launch automated container security integration using VEX to eliminate false positives from base image vulnerabilities, reducing triage workload by 90%+.

Docker Model Runner now enables fully local AI image generation using Stable Diffusion via Open WebUI, eliminating cloud dependency for privacy and control.

Kubernetes v1.36 introduces opt-in memory reservation, tiered protection by QoS class, new observability metrics, and kernel version warnings for Memory QoS feature.

Kubernetes v1.36 alpha feature introduces pod-level resource managers, enabling hybrid allocation for performance workloads without wasting cores on sidecars.

Kubernetes v1.36 alpha introduces manifest-based admission control: load policies from disk at startup to close bootstrap gaps and prevent deletion by privileged users.

Kubernetes 1.36 graduates declarative validation to GA, replacing 18k lines of handwritten code with a maintainable framework using marker tags and validation-gen.

Russian GRU hackers hijacked 18k+ routers to steal OAuth tokens from Microsoft Office users via DNS hijacking, targeting governments and email providers.

April 2026 Patch Tuesday: record 167 Microsoft fixes, active exploits in SharePoint, Windows Defender, Chrome, Adobe Reader. Urgent updates required. Now with AI-fueled vulnerability discovery.

Tyler Buchanan, senior Scattered Spider member, pleads guilty to wire fraud and ID theft after SMS phishing attacks on tech giants and SIM-swapping crypto theft.

V8 is moving from the Sea of Nodes IR (Turbofan) to a CFG-based IR (Turboshaft) to reduce complexity, improve debuggability, and streamline maintenance. The shift is almost complete across JavaScript and WebAssembly.

Learn how V8's Explicit Compile Hints allow developers to mark functions for eager compilation, reducing startup time by up to 630ms.

V8's new speculative optimizations for WebAssembly, including call_indirect inlining and deoptimization, boost performance especially for WasmGC, with Dart microbenchmarks over 50% speedup.

V8's JSON.stringify is now over twice as fast thanks to a side-effect-free fast path, iterative traversal, and templatized string handling for one-byte/two-byte strings.

Medtronic breach, cPanel zero-day actively exploited, AI-powered phishing platform Bluekit exposed - urgent security updates needed.

AI weather models underperform traditional physics-based models in forecasting record-breaking extreme events, according to a new study. They underestimate frequency and intensity, highlighting limitations in predicting rare events.

China issues strict fossil fuel controls and new evaluation criteria, while record-breaking rains hit southern provinces, highlighting dual challenges.

57 nations at the Santa Marta summit agree to develop national roadmaps away from fossil fuels, launch a Science Panel, and set a second summit for 2027 in Tuvalu.