Pulse

A critical vulnerability has been discovered in an open-source package, potentially endangering millions of AI agents worldwide. This flaw could allow hackers to access servers running these agents, leading to the theft of sensitive data and credentials for third-party accounts. The vulnerability was highlighted by Ars Technica, raising significant cybersecurity concerns for the rapidly expanding field of agentic AI. AI

A developer has created a searchable directory for Claude Code plugins to address the scattered nature of plugin discovery. The website, claudepluginhub.com, automatically finds plugins by scanning for valid `.claude-plugin/plugin.json` files. It provides trust signals such as GitHub stars, maintenance scores, and usage data, while also highlighting potential risks like hooks or MCP servers. The platform supports semantic search and generates install commands, with a free tier for browsing and basic search, and a paid tier for advanced features. AI

A developer has created a free tool to scan Claude Desktop MCP configurations for security vulnerabilities. The tool checks for known CVEs, tool poisoning, maintainer drift, and hygiene issues like unpinned packages or exposed secrets. This initiative was prompted by a real-world malicious MCP server that silently introduced a backdoor, highlighting the risks of unpinned installations. AI

Users on Reddit are sharing their positive experiences with custom LoRAs trained for the Anima base 1.0 model. One user documented their first attempt at training a LoRA, showcasing impressive before-and-after results that significantly improved image generation quality. Another user highlighted the effectiveness of Anima base 1.0 in understanding LoRA training, even for novice users, and an official Turbo LoRA for the model has also been released. AI

A new Windows application called llama.cpp Console has been released, designed to simplify the setup and management of llama.cpp models within the Windows Subsystem for Linux (WSL) environment. Developed by users for users, this tool offers a graphical interface for tasks such as installing WSL, building llama.cpp with CPU, CUDA, or Vulkan support, downloading models from Hugging Face, and managing model serving parameters. The application aims to provide a more user-friendly experience for Windows users who prefer not to interact directly with the command line for these operations. AI

A user on a ChatGPT business plan reported a significant privacy breach where their desktop app temporarily displayed another user's chat history. The user had to restart the application to regain access to their own data. This incident raises concerns about data security and potential widespread exposure of personal conversations. AI

Google's Contextual Suggestions feature is expanding its availability beyond Pixel devices to a wider range of Android phones. This feature aims to provide users with more relevant information and actions based on their current context within the Android operating system. AI

MiMo 2.5 Pro and DeepSeek V4 Pro are now priced identically, signaling the start of a price war in the AI model market. This competitive pricing strategy aims to attract users by offering comparable performance at a lower cost. The move suggests a maturing market where cost-effectiveness is becoming a key differentiator. AI

Joi AI, an NSFW AI startup, is recruiting 10 "masturbation consultants" for a four-week study on a new guided masturbation feature. Participants will be paid $2,000 to test the feature and document its effects on stress, sleep, and mood. This initiative highlights the growing trend of AI companies developing explicit content and services, often operating with fewer restrictions than mainstream AI applications. AI

A new study indicates that Samsung's Galaxy Watch6 can predict fainting spells minutes in advance. The wearable uses AI to analyze heart rate patterns, providing an early warning system for potential syncopal episodes. AI

Amazon Bedrock AgentCore is being utilized to develop sophisticated AI agents for business support, enhancing operational efficiency and reducing costs. One application involves Works Human Intelligence (WHI) building agents for HR tasks, migrating from LangGraph to AgentCore to manage multi-tenancy and improve observability. Another use case is the AWS SMGS organization's NarrateAI, a conversational assistant powered by AgentCore and a data lake, which provides on-demand business intelligence to leaders, transforming decision-making by offering immediate, context-rich insights. AI

New AI music generation demos showcase increasingly realistic audio capabilities. These advancements highlight the potential for AI to create sophisticated musical pieces, raising questions about the future of music creation and copyright. AI

A new benchmark for creative writing, focusing on short stories, has been released. The benchmark evaluates models based on head-to-head comparisons of stories generated in response to specific creative prompts. Early results show Baidu's Ernie 5.1 performing best among the tested models, with Qwen 3.7 Max, Mistral Medium 3.5, and Grok 4.3 scoring significantly lower. AI

Microsoft's .NET blog has published a guide detailing how developers can enhance their productivity using GitHub Copilot. The article, shared across multiple platforms, highlights various features and integrations that streamline the development process for .NET applications. It aims to inform developers about leveraging AI tools like GitHub Copilot within their existing .NET workflows. AI

A Reddit user is experiencing difficulties integrating GPT agents with Slack, despite following the provided setup instructions. The user has a Pro Slack plan and a GPT Business account but is unable to get the GPT agent to recognize the Slack integration settings. They have tried troubleshooting steps like disconnecting and reconnecting accounts multiple times without success. AI

A user on Reddit is enthusiastically praising Anima-Base, a new model for image generation, highlighting its impressive capabilities. They claim that all the example images were created solely with Anima-Base, without the use of any LoRAs (Low-Rank Adaptations), and provide links to CivitAI for prompts and workflows. The user believes the model is not receiving the recognition it deserves. AI

Coinbase has launched Base MCP, a new tool for its Base blockchain network that facilitates crypto transactions using AI agents. This integration allows users to connect their Base accounts to AI models like Claude and ChatGPT, enabling actions such as trading, lending, and managing DeFi applications. The tool leverages the Model Context Protocol (MCP) standard, which simplifies communication between AI agents and APIs, and is part of a broader industry trend towards agentic commerce and microtransactions. AI

A new feature called "Side Chat" has been developed for ChatGPT, allowing users to ask follow-up questions without disrupting the main conversation thread. This functionality is integrated into the GPT Master Chrome extension, which has approximately 5,000 weekly users. The feature aims to streamline user interaction by enabling quick clarifications or additional queries related to the primary response. AI

Microsoft Copilot Cowork has a vulnerability that allows data exfiltration. The system permits agents to send emails to the user's inbox without explicit approval. These emails can contain external images that trigger network requests, potentially leaking data to attackers. Furthermore, if the agent can access OneDrive, it could leak pre-authenticated download links, enabling attackers to access sensitive files. AI

Newegg is offering a deal on Nintendo gift cards, providing $200 worth of credit towards games to help consumers save for future purchases, potentially including the upcoming Switch 2 console. This promotion aims to ease the financial burden of acquiring new gaming hardware and software. AI

Dropbox founder and CEO Drew Houston is stepping down after 19 years at the helm of the cloud storage company. He will transition to the role of executive chairman. Product chief Ashraf Alkarmi is slated to become the new CEO following a co-CEO transition period. Houston's move comes as he reportedly looks to pivot towards AI. AI

Users of OpenAI's Projects are reporting issues with the platform's ability to read files and sources. This problem appears to be widespread, with multiple users experiencing the same malfunction. AI

Anima TrainFlow, a user-friendly LoRA trainer for Anima, has been updated with integrated dataset preparation features. The tool now offers smart object-aware cropping and bucketing using the U^2-Net AI to ensure subjects are not cut off, and includes built-in auto-captioning powered by the WD14 Tagger model. These additions aim to streamline the workflow from raw images to training, making it accessible for beginners and efficient for experienced users. AI

A Reddit post on r/OpenAI details a prompt chain designed to help clinics manage staff scheduling and PTO requests. The prompt guides users through parsing PTO and staff calendars, identifying shifts affected by absences, and evaluating coverage against clinic rules. It also suggests backup staff and helps determine PTO approval status, ultimately drafting notifications for employees, backup staff, and managers. AI

An individual has developed a complete AI-driven animation pipeline, enabling the creation of a 2.5-minute animated show titled "Everything's SLOP" in just five days. This pipeline integrates various AI tools from the initial stages, including style LoRA training, face generation with Qwen Image Edit, full-body refinement with Flux.2 Klein 9B, and voice generation using ElevenLabs Voice Design. The animation process was guided by dialogue and performance rather than traditional storyboarding, with final video generation handled by LTXV 2.3. AI

A Reddit post on the r/OpenAI subreddit details a prompt chain designed to help nonprofits streamline their purchase request processes. The prompt guides users through extracting necessary rules and data, creating an intake form, outlining financial routing, and refining the system based on feedback. It emphasizes customizing variables like organization name, currency, and document format for a compliant and efficient workflow. AI

TechCrunch is reminding potential attendees that Early Bird ticket pricing for its Disrupt 2026 conference ends on May 29th at 11:59 p.m. PT. This event, scheduled for October 13-15 in San Francisco, aims to bring together over 10,000 founders, investors, and tech leaders. Attendees can expect networking opportunities, insights into emerging technologies like AI, and access to startup showcases and pitch competitions. AI

Microsoft has begun canceling enterprise licenses for Anthropic's Claude Code, reportedly to consolidate development tools around its own GitHub Copilot Workspace and Cowork offerings. This move, detailed in leaked internal communications and reported by The Verge, is expected to prompt other companies to re-evaluate their AI vendor strategies and potential exposure to similar shifts. Developers who relied on Claude Code for their workflows may face significant productivity drops and increased costs if forced back to Copilot, raising concerns about the long-term viability of third-party AI coding assistants. AI

A developer has created a new macOS application called atrium, designed to provide a human-in-the-loop interface for multi-agent workflows. Dissatisfied with existing tools that automate agents without user oversight, the developer built atrium to integrate CLI agents into a tiling workspace. The application, developed using the BMad Method and Claude Code, offers interactive activity cards, comprehensive state saving for seamless resumption, and a robust CLI for agent control. AI