The Hacker News

PraisonAI CVE-2026-44338 Auth Bypass Targeted Within Hours of Disclosure

The vulnerability in question is CVE-2026-44338 (CVSS score: 7.3), a case of missing authentication that exposes sensitive ...

Anthropic reinstates OpenClaw and third-party agent usage on Claude subscriptions — with a catch

If an agent is inefficient and burns through tokens, it simply drains the user's new $20 to $200 Agent SDK credit budget ...
GitHub

LLM-Red-Team/metaso-free-api

支持高速流式输出、支持秘塔AI超强联网搜索(全网or学术以及简洁、深入、研究三种模式),零配置部署,多路token支持。 与ChatGPT接口完全兼容。 还有以下九个free-api欢迎关注: Moonshot AI(Kimi.ai)接口转API kimi-free-api 阶跃星辰 (跃问StepChat) 接口转API step-free-api 智谱AI (智谱清言) 接口转API ...
TheServerSide

How to get an OpenAI API key for ChatGPT

The biggest mistake people make when trying to get their ChatGPT API key is that they use the wrong URL. The key can't be found at chatgpt.com. Instead, point your browser to the OpenAI developer ...
9to5Mac

OpenAI upgrades ChatGPT and Codex with GPT-5.5: ‘a new class of intelligence for real work’

GPT-5.5 lands seven weeks after the release of GPT-5.4, which arrived on March 5. OpenAI says the newest model “understands what you’re trying to do faster” and that it can “carry more of the work ...
Bleeping Computer

New npm supply-chain attack self-spreads to steal auth tokens

A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts. The threat ...
Game Rant

How to Unlock the Raygun in Mouse P.I. For Hire

Ashely Claudino is an Evergreen Staff Writer from Portugal. She has a Translation degree from the University of Lisbon (2020, Faculty of Arts and Humanities). She has been writing for Game Rant since ...