CSO Online

Critical RCE bugs expose the n8n automation platform to host‑level compromise

A JavaScript sandbox bug rated CVSS 9.9 enables attackers to bypass AST‑based protections, while a Python execution bypass ...

AI agent tools aren’t ready for the real world yet, new study finds

The authors argue that today’s agentic AI platforms are closer to experimental infrastructure than finished products.
The Hacker News

Critical Grist-Core Vulnerability Allows RCE Attacks via Spreadsheet Formulas

A critical Grist-Core flaw (CVE-2026-24002, CVSS 9.1) allows remote code execution through malicious formulas when Pyodide ...

Snowflake bets $200M that OpenAI makes databases more chatty

Cuts out the Azure middleman with multi-year deal for 'tighter alignment' Snowflake plans to spend as much as $200 million ...
eWeek

‘I Don’t Write Code Anymore’: Anthropic, OpenAI Engineers Say AI Now Writes 100% of Their Code

Anthropic and OpenAI engineers say AI writes nearly all their code, reshaping workflows, hiring, and the outlook for ...

Most RAG systems don’t understand sophisticated documents — they shred them

Standard RAG pipelines treat documents as flat strings of text. They use "fixed-size chunking" (cutting a document every 500 ...
SecurityWeek

N8n Vulnerabilities Could Lead to Remote Code Execution

Two vulnerabilities in n8n’s sandbox mechanism could be exploited for remote code execution (RCE) on the host system.
Dark Reading

Second Round of Critical RCE Bugs in n8n Spikes Corporate Risk

A new around of vulnerabilities in the popular AI automation platform could let attackers hijack servers and steal ...