Tag: Python

Security researchers have uncovered a severe vulnerability, dubbed BadHost (CVE-2026-48710), in the Starlette web framework that powers FastAPI and dozens of AI‑related Python packages. The flaw allows a malicious HTTP Host header to bypass path‑based authorization, giving attackers access to servers that store valuable credentials for AI agents. Starlette versions before 1.0.1 are vulnerable, and the issue affects an estimated 325 million weekly downloads. The fix arrived Friday, and a joint scanner from X41 D‑Sec and Nemesis now lets operators test their deployments. Leggi di più

OpenAI announced a major upgrade to its Agents SDK, introducing sandboxing capabilities and an in-distribution harness for frontier models. The new features let businesses run AI agents in isolated environments and test them with advanced models while keeping systems secure. Initially available in Python, with TypeScript support slated for later, the tools aim to help enterprises build longer‑horizon, multi‑step agents without risking unintended actions. OpenAI says the enhancements will be offered through its standard API pricing. Leggi di più

OpenAI announced an agreement to acquire Astral, the creator of popular open‑source Python development tools such as uv, Ruff, and ty. The acquisition will integrate Astral’s projects into OpenAI’s Codex team, allowing AI agents to work more directly with tools developers already use. OpenAI pledged continued support for the open‑source community while enhancing Codex’s capabilities. The move intensifies competition with Anthropic’s Claude Code, which recently added the JavaScript runtime Bun. Earlier this month, OpenAI also secured Promptfoo, an open‑source security tool for large language models. Leggi di più

A developer turned to the Claude large‑language model to create a Python script that colorizes log output and supports scrolling in a terminal viewport. While the initial tool functioned, horizontal scrolling caused near‑full CPU usage on a single core. The developer asked the model for a zero‑CPU impact solution, only to learn that such performance is unattainable. Claude suggested low‑impact alternatives, but after extensive token consumption and code revisions, the effort stalled without a satisfactory fix. Leggi di più

Archy, a flexible editing environment, has broadened its command library to include internet-oriented tools such as EMAIL and GOOGLE. Commands are built as small documents that embed Python snippets, allowing users to edit, save, and execute them without restarting the application. The system preserves the entire workspace on exit, enabling seamless continuity across sessions. Leggi di più

A developer has created a mod that injects large‑language‑model generated dialogue into the GameCube version of Animal Crossing. By monitoring memory for conversation triggers and inserting placeholder text, the mod races to fetch AI responses and format them using the game's encoded text system. The solution splits the workload between a Writer AI, which crafts character‑specific lines, and a Director AI, which adds the necessary control codes for color, emotion, and sound. The tool runs on Python, requires API keys for Google Gemini or OpenAI, and works with the Dolphin emulator on macOS, though it contains known bugs. Leggi di più