ZDNet

AWS's AI code reviewer now spots Log4Shell-like bugs in Java and Python code

Amazon Web Services (AWS) has updated the 'detectors' in its CodeGuru Reviewer tool to seek out log injection flaws like the recently disclosed Log4Shell bug in the popular Java logging library Log4J.
CSOonline

Attackers use Python compiled bytecode to evade detection

Newly discovered campaign takes advantage of the fact that most vulnerability scanning tools don't read compiled open-source software. Attackers who are targeting open-source package repositories like ...
InfoWorld

Pyston, the Python alternative, gets backing from Anaconda

Looking to advance Python performance, data science platform provider Anaconda has hired the lead developers of the Pyston alternative Python runtime. The developers, Kevin Modzelewski and Marius ...