
GitHub has released CodeQL 2.26.0, enhancing its static analysis capabilities with new features and improved accuracy. This update includes support for Kotlin 2.4.0 and introduces a query to detect AI prompt injection vulnerabilities in JavaScript and TypeScript. Additionally, it refines security queries across various languages, such as C#, Go, and Python, to reduce false positives and enhance detection. These improvements aim to bolster security for developers using GitHub code scanning, particularly in AI-related applications.
Read original
© GitHub ChangelogGitHub has streamlined budget management for enterprises by introducing a REST API endpoint that allows for efficient tracking of individual user consumption against multi-user budgets. Previously, checking each user's budget usage required separate API calls, making the process cumbersome for large organizations. Now, enterprise owners and billing managers can quickly identify users nearing their budget limits, thanks to new filtering and sorting capabilities. This update simplifies financial oversight and reduces the need for custom scripts, making budget management more accessible and efficient.
© GitHub ChangelogGitHub has officially launched its new pull requests dashboard, providing a centralized hub for developers to manage and prioritize their pull requests. This feature, previously in public preview, now offers enhanced filtering and search capabilities, allowing users to create custom views and utilize advanced search queries. The dashboard aims to streamline the workflow for both individual contributors and managers by surfacing critical pull requests that require attention. This update marks a significant improvement in how developers can interact with and manage their contributions across multiple projects.
© GitHub ChangelogOpenAI's GPT-5.6 models, Sol, Terra, and Luna, have been integrated into GitHub Copilot, offering developers tailored solutions for distinct coding challenges. Sol excels in handling complex reasoning tasks over extensive codebases, while Terra provides a balanced approach for everyday coding activities. Luna, on the other hand, is optimized for smaller, cost-efficient tasks. This integration allows developers to select the most suitable model for their specific project needs, enhancing the tool's flexibility and efficiency. Users will soon find these models accessible across platforms like Visual Studio and JetBrains, as the rollout progresses.
Claude Code's latest update, v2.1.207, brings a host of bug fixes and improvements, enhancing user experience and system reliability. Notably, Auto mode is now accessible without opt-in on major platforms like Bedrock and Vertex AI, simplifying user access. The update also addresses several critical issues, such as terminal freezing during long responses and spurious prompt-injection warnings. These changes make Claude Code more robust and user-friendly, particularly for developers relying on its seamless integration and performance.
© The AI Daily BriefGrok 4.5 and Cognition SWE 1.7 are designed for cost-efficient, high-speed coding and workflow automation.
Hugging Face's latest blog post delves into the intricacies of profiling attention mechanisms in PyTorch, revealing the impact of different implementations on performance. By comparing naive and in-place operations, the article demonstrates how a minor adjustment can eliminate unnecessary memory operations, enhancing efficiency in large models. The post also evaluates PyTorch's built-in Scaled Dot Product Attention, which simplifies coding but may lead to unexpected performance variations depending on the backend. This exploration highlights the critical role of understanding underlying operations for deploying models effectively.