Today's digest · Friday, July 17

The 17 things in AI/dev today.

LiveNext issue at 7:00 CET
#1 / TODAY
Lobsters·1 min·21h agoFREE

Forgejo v16.0 is available

Forgejo v16.0 was released on 16 July 2026, introducing security hardening against SSRF in Git mirroring. Administrators can now use config settings to restrict host access, and the Git option http.followRedirects=false prevents redirect-based bypasses. Mirrors of renamed or transferred repositories will now treat redirects as errors, requiring manual updates.

Administrators must update mirrors of renamed or transferred repositories to avoid errors.

forgejoself-hostedsecurityssrf
forgejo.org
Forgejo v16.0 is available
New Agent Data Injection Attack Can Make AI Agents Misclick or Run Attacker Commands
#2 / TOP STORY
The Hacker NewsFREE

New Agent Data Injection Attack Can Make AI Agents Misclick or Run Attacker Commands

A new attack called Agent Data Injection corrupts the information AI agents trust, causing them to perform unintended actions. For example, a planted review on a product page can make an agent click "Buy Now" instead of summarizing reviews. A fake comment on a GitHub thread can make a coding assistant run a stranger's command. The attack does not hijack the agent's task but corrupts the facts it relies on.

aigest · daily

Get this every morning.

One email. The signal. Built for builders.

Free · Unsubscribe in one click · No trackers

// Worth acting on2 stories
// Worth knowing10 stories

AI-assisted refactoring is effective only when grounded in evidence and validated in a reproducible environment.

airefactoringdockerjava
Martin Fowler17h ago1mFREE
More selected · 2

Developers can now directly see why cache decisions occur, simplifying debugging of performance issues.

vercelcachingloggingdebugging
Vercel6h ago1mFREE
// Yesterday14 stories