Shared entity / Threat pattern
ClawHavoc campaign plants 300+ malicious skills on a single marketplace to run infostealers
Unit 42 (Palo Alto Networks)
Policy dependency / Stack layer
IAPS warns on Kimi Claw: security and governance risks of Chinese-hosted 'always-on' AI agents
IAPS
Stack layer / Threat pattern
Jim Fan: NVIDIA Open-Sources ASPIRE, and 'the Training Output Changes From Model Weights to a Continuously Expanding Skill Library'
BigGo Finance
Stack layer / Threat pattern
Open-Source Multi-Agent Firewall Intercepts Both HTTP(S) and WebSocket LLM Traffic
arXiv
Policy dependency / Stack layer
Anthropic's Fable 5 Shifts to Usage-Credit Billing and Mandatory Persona ID Verification July 8
BuildFastWithAI
Stack layer / Threat pattern
From Prompts to Contracts: Moving Deterministic Agent Behavior Out of Prompts and Into Code
arXiv
Stack layer / Threat pattern
RadixArk's Miles Lands on the PyTorch Foundation Blog — a PyTorch-Native RL Post-Training Stack With a Two-Decorator API
PyTorch Foundation Blog
Stack layer / Threat pattern
OpenClaw ships broad July 6 platform update: GPT-5.6 support, external harness attach, hardened provider I/O
Releasebot