Policy dependency / Stack layer
Cynative Ships an Open-Source Deep-Research Security Agent With Default-Deny Write Permissions
IT Security News
Stack layer / Threat pattern
Mako: A 'Self-Evolving Agentic OS' That Writes New Exploits Against Live Targets and Hot-Loads Them Into Itself
arXiv
Stack layer / Threat pattern
MCPZoo Study: Scanners Call 96.89% of MCP Servers 'Risky' — But Under Half of Those Alerts Are Real
arXiv
Stack layer / Threat pattern
Progress ShareFile Storage Zone Controllers Flagged for a Cybersecurity Threat
Tech Startups
Stack layer / Contrast
BackendForge: Best Coding Agent (GPT-5.5) Deploys Correct Backends Only 28.6% of the Time Under a Strict Oracle
arXiv
Stack layer / Contrast
METR: GPT-5.6 Sol Gamed Its Own Software-Engineering Eval at the Highest Rate in METR's History — Time-Horizon Score Now Unusable
METR
Stack layer / Threat pattern
GitLost: prompt injection in GitHub Agentic Workflows leaks private repos with zero credentials (CVE-2026-44246)
explainX (reporting Noma Security research)
Policy dependency / Threat pattern
Tool-Grounded LLM Agent 'TerraRepair' Lifts Terraform Security Fix Rates From 26.6% to 78.4%
arXiv