Ludovic Alarcon

Anthropic Launches Claude Code Security to Scan Codebases for Security Vulnerabilities A new feature inside Claude Code enables developers and security teams to identify and remediate vulnerabilities across their codebases, known as Claude Code Security. Currently available in a limited research preview, the tool offers AI-powered code scanning that goes beyond conventional static analysis by understanding how code actually works, not just what it contains. Traditional tools often rely on rule-based scanning to check for known vulnerability patterns, such as hardcoded passwords or missing encryption. While effective to a point, they often miss complex or context-dependent flaws, such as logic errors or insufficient access controls, that attackers can exploit. Smarter Detection and Verification Each vulnerability identified by Claude undergoes a multi-layered verification process . The system re-examines its own detections to minimize false positives and assigns severity and confidence ratings to each result. Findings then appear in the Claude Code Security dashboard, where teams can review suggested patches and approve the final fixes. Nothing is applied automatically; users maintain full control over remediation steps. Anthropic’s move follows a growing need for automation in vulnerability management. Security teams worldwide face overwhelming backlogs as the number of identified software flaws continues to soar. The launch builds on more than a year of research by Anthropic into Claude’s cybersecurity potential. By supplementing human expertise with AI-driven insights, Claude Code Security aims to ease that workload while maintaining accuracy and accountability. Feature Description AI vulnerability detection Scans code for security issues and suggests fixes for review. Context-aware analysis Understands data flow and component interactions to find complex flaws. Multi-stage verification Rechecks findings to reduce false positives. Severity ratings Assigns priority levels and confidence scores to issues. Human review Developers review and approve suggested fixes. Security dashboard Shows validated issues and tracks remediation progress. Powered by Claude Opus 4.6 Uses the latest Claude model to detect serious vulnerabilities. Defender-focused design Helps security teams manage growing vulnerability backlogs. Anthropic’s internal Frontier Red Team has tested these capabilities through hackathons, collaboration with the Pacific Northwest National Laboratory, and real-world applications. Using  Claude Opus 4.6, released earlier this year , the AI reportedly helped uncover over 500 previously undetected vulnerabilities in open-source projects, some of which had remained hidden for decades despite extensive human oversight. As AI continues to transform both offensive and defensive cybersecurity operations, Anthropic positions Claude Code Security as a tool for defenders to stay ahead of emerging AI-enabled threats. The company envisions a future in which most global codebases are continuously scanned by intelligent systems that predict and prevent attacks before they occur. Enterprise and Team customers can now request early access to Claude Code Security. At the same time, open-source maintainers are invited to join a fast-tracked preview program. Follow us on Google News , LinkedIn , and X for daily cybersecurity updates. Contact us to feature your stories. The post Anthropic Launches Claude Code Security to Scan Codebases for Security Vulnerabilities appeared first on Cyber Security News .

Anthropic Launches Claude Code Security to Scan Codebases for Security Vulnerabilities

“Using go fix to modernize Go code” by Alan Donovan — https://go.dev/blog/gofix

#golang

A group photo from the KubeCon + CloudNativeCon Co-located event, Cloud Native Teleco Day London

Interested in cloud native for telecom—latency, reliability, observability, and security at scale?

Cloud Native Telco Day returns to KubeCon + CloudNativeCon EU 2026.

Read the deep dive from Gergely Csatari and Philippe Ensarguet:
www.cncf.io/blog/2026/02...

#CNCF #KubeCon #CloudNative #Telco

Ingress NGINX: Statement from the Kubernetes Steering and Security Response Committees In March 2026, Kubernetes will retire Ingress NGINX, a piece of critical infrastructure for about half of cloud native environments. The retirement of Ingress NGINX was announced for March 2026,…

⚠️ Kubernetes ingress-nginx retires March 2026.

Key statements:
• No security patches after retirement.
• Ingress-nginx powers ~50% of environments.
• Migration to Gateway API is recommended.
• There are no direct drop-in replacements.

Read more: kubernetes.io/blog/2026/01...

GitHub - qjoly/talosctl-oidc: OIDC certificate exchange server and client for Talos Linux. Enables OIDC-based access control for talosctl by issuing ephemeral short-lived client certificates signed by... OIDC certificate exchange server and client for Talos Linux. Enables OIDC-based access control for talosctl by issuing ephemeral short-lived client certificates signed by the Talos CA. - qjoly/talo...

v0.0.1 en ligne ! 🎉
Hésitez pas à faire des retours (et à contribuer si ça vous botte😁)

github.com/qjoly/talosc...

GitHub - p-r-a-v-i-n/rwatch: Real-time Threat Detection using eBPF + Rust Real-time Threat Detection using eBPF + Rust. Contribute to p-r-a-v-i-n/rwatch development by creating an account on GitHub.

Real-time Threat Detection using eBPF + Rust

CND France 2026 - Toutes les conférences Share your videos with friends, family, and the world

🎥 Tous les talks des #CloudNativeDaysFr sont désormais disponibles en replay!

Retrouvez l’ensemble des interventions ainsi que la playlist complète sur notre chaîne YouTube 👇
www.youtube.com/playlist?lis...

Bon visionnage et n’hésitez pas à partager vos retours!

Different Ways To Deliver Kernel Events from eBPF to User Space | iximiuz Labs In this tutorial, you’ll learn how eBPF applications send kernel events into user space using perf buffer and ring buffer, exploring their design, trade-offs, and performance implications. You’ll…

When thinking about how to deliver kernel events from eBPF to user space, a lot of people turn to perf buffers or ring buffers. Maybe instead it is time we rethink what we are actually trying to do with that data instead of just trying to move it faster?

GitHub - ardanlabs/kronk: This project lets you use Go for hardware accelerated local inference with llama.cpp directly integrated into your applications via the yzma module. Kronk provides a high-lev... This project lets you use Go for hardware accelerated local inference with llama.cpp directly integrated into your applications via the yzma module. Kronk provides a high-level API that feels simil...

Kronk 1.19.2 is the best version yet. Lot's of performance gains. Kronk is being designed for specific and targeted apps and single developer use

IMC: Incremental message caching provides a performance boost when using local models and agents like Cline or Kilo

#golang

github.com/ardanlabs/kr...

GitHub - codelaboratoryltd/bng: eBPF-accelerated Broadband Network Gateway for Kubernetes edge deployments eBPF-accelerated Broadband Network Gateway for Kubernetes edge deployments - codelaboratoryltd/bng

eBPF-accelerated Broadband Network Gateway for Kubernetes edge deployments

“Go 1.26 is released” by Carlos Amedee, on behalf of the Go team — https://go.dev/blog/go1.26

#golang

https://res.cloudinary.com/learnk8s/image/upload/v1770643048/social/scheduler-thread/wsb8mh2ulmlb1zrnuhz6.png

The Kubernetes scheduler doesn't randomly assign pods to nodes

It runs a two-phase pipeline: filter, then score

Here's how it works, in 7 diagrams

Google OS Blog: A JSON schema package for Go
#golang

opensource.googleblog.com/2026/01/a-j...

7.0 IS COMING !

Go Lightning talks @ FOSDEM 2026 Talks: Kronk: hardware accelerated local inference by William Kennedy Re-imagining the Tamagotchi with Go by Andy Williams A Go app on mobile, the easy way by Tanguy ⧓ Herrmann Write a microservice...

My lighting talk at FOSDEM in the #golang room last weekend.

Introducing Kronk

cuddly.tube/w/mBtDbXQLde...

oss-sec: Go 1.25.7 and Go 1.24.13 are released with 2 CVE fixes Posted by Alan Coopersmith on Feb 07 https://groups.google.com/g/golang-announce/c/K09ubi9FQFk announces:

Go 1.25.7 and Go 1.24.13 are released with 2 CVE fixes

Capture d'écran d'une page web, catalogue de solutions pour déployer kubernetes

Bon, j'ai pas mal teasé, il est plus que temps que vous partager un de mes derniers sideprojects : rendre joli et agréable à naviguer mon repo github.com/zwindler/101...

#Kubernetes

Note: depuis hier je bosse l'UX sur mobile, ça reste plus agréable sur desktop

zwindler.github.io/101-ways-to-...

Release v1.36.0-alpha.1 · kubernetes/kubernetes See kubernetes-announce@. Additional binary downloads are linked in the CHANGELOG. See the CHANGELOG for more details.

New Kubernetes Alpha Release

☸︎ v1.36.0-alpha.1 ☸︎

https://github.com/kubernetes/kubernetes/releases/tag/v1.36.0-alpha.1

#Kubernetes #k8s #kube

🤖 New blog post: Running Pi coding agent with Tiny Language Models!

Learn how to set up a minimalist AI coding assistant in @docker.com with Devcontainer + Docker Model Runner.

Perfect for local, privacy-friendly AI coding.

🌍 k33g.org/20260205-PI%...

#TinyLLM #CodingAgent #Docker

MON HOMELAB d'appart en 2026 ! YouTube video by Adrien Linuxtricks

Vous me la demandez régulièrement : LA VOICI
Une vidéo dédiée à l'installation de mon HOMELAB !
Un bon HOMELAB D'APPART' !
Compact, Silencieux avec un cable management hors-pair !
www.youtube.com/watch?v=oTF-...

🎉 Go 1.26 Release Candidate 3 is released!

🔒 Security: Includes an update for crypto/tls (CVE-2025-68121).

🏖 Run it in dev! Run it in prod! File bugs! go.dev/issue/new

📢 Announcement: groups.google.com/g/golang-ann...

⬇️ Download: go.dev/dl/#go1.26rc3

#golang

Et si jamais ça intéresse des gens 😊

La prez (avec quelques blagues :p) : www.canva.com/design/DAG_-...

Le dépôt GitHub avec exemple / docs : github.com/qjoly/worksh...

Image of a person sitting next to a bookshelf with their zines Welcome! Enter your email address and we'll send you a link to download all of the zines that you've ordered in the past.

Over the years I've been hearing from folks that it's hard to remember which zines you've bought

So we built a new library website where you can see & download all your zines!

library.wizardzines.com

OpenTelemetry Collector vs agent: How to choose the right telemetry approach As cloud-native architectures continue to mature, observability has become a foundational requirement rather than an optional add-on. According to the Cloud Native Computing Foundation…

OpenTelemetry Collector vs agent: How to choose the right telemetry approach #devopsish #cloudnative

GitHub - tuananh/ci-agent: eBPF-based egress audit tool for CI environments. Captures outbound network connections with executable paths and DNS hostnames. eBPF-based egress audit tool for CI environments. Captures outbound network connections with executable paths and DNS hostnames. - tuananh/ci-agent

eBPF-based egress audit tool for CI environments. Captures outbound network connections with executable paths and DNS hostnames

A nice present from @daniel.haxx.se today 🙂

This is the way

💡Tips : comment décoder un JWT bien au chaud depuis votre terminal ?
(si vous voulez copier-coller, tout est dans le alt)

GitHub - secexit/secexit: secexit - an 'egress firewall' that blocks unauthorized outbound traffic from all your servers (and all those containers ...) using eBPF. secexit - an 'egress firewall' that blocks unauthorized outbound traffic from all your servers (and all those containers ...) using eBPF. - secexit/secexit

'egress firewall' that blocks unauthorized outbound traffic from all your servers (and all those containers ...) using eBPF.

GitHub - AtoZ132/Tachi Contribute to AtoZ132/Tachi development by creating an account on GitHub.

Heap tracing tool utilizing eBPF to trace allocation events and find memory leaks and double frees