A new supply chain campaign called **Shai-Hulud** has compromised 19 science-focused packages on the Python Package Index, [according to BleepingComputer](https://www.bleepingcomputer.com/news/securit
Active exploitation of a critical WordPress plugin, White House AI policy upheaval, and Python's JIT compiler hitting an unexpected governance stop made for a dense Friday in tech.
A critical vulnerability dubbed **"BadHost"** has been discovered in [Starlette](https://arstechnica.com/information-technology/2026/05/millions-of-ai-agents-imperiled-by-critical-vulnerability-in-ope