OSSLovable Vibe-Coded App Exposes 18K Users First Real BreachThe Register·high signal16 vulnerabilities in Lovable-hosted exam platform. 18,697 user records exposed. First major real-world vibe-coded security breach.SourceSource pageThe Register↳ Follow the threadPolicy dependency / Stack layerCodenotary ships AgentMon 3 for agent runtime policy and compliance loggingAI Agent StorePolicy dependency / Stack layerFirst Recon AI ships AI Security Runtime GA — inline policy enforcement on every agent-to-agent and agent-to-tool callBusiness WireStack layer / Threat patternGitHub Ships CodeQL 2.26.0 With AI Prompt-Injection Detection for JavaScript/TypeScriptGitHub (CodeQL release notes)Stack layer / Threat patternMitigating Taint-Style MCP Server Vulnerabilities Without Touching Server Code (SPELLSMITH)arXivStack layer / Threat patternVaronis discloses 'Rogue Agent' — a Dialogflow CX flaw letting one permission poison a shared agent runtimeNxCodeStack layer / Threat patternMeta's Muse Spark 1.1 Ships a 1M-Token Agentic Model Alongside Meta's First Paid Developer APIAIappsStack layer / Threat pattern'I Used to Love Claude, but the Latest Models Are Slowly Ruining It'Android Authority (via Hacker News)Stack layer / Threat patternGhostApproval: symlink flaw turns human-in-the-loop into a rubber stamp across 6 coding agentsCyber Security News