Flux
Socket Raises $60M Series C at a $1B Valuation to Help Enterprises Build Securely With AI
Cybersécurité Programmation

Socket Raises $60M Series C at a $1B Valuation to Help Enterprises Build Securely With AI

Led by Thrive Capital, the round brings Socket to unicorn status as enterprises race to adopt AI coding tools and look for ways to secure the third-party dependencies entering production without slowing down SAN FRANCISCO, May 20, 2026 – Socket today announced it has raised $60 million in Series C funding at a $1 billion valuation. Led by Thrive CapitaI, with participation from a16z, Abstract Ventures, and Capital One Ventures, the round will support Socket’s next phase of growth as more…

Socket
The Agent Stack Bet
IA

The Agent Stack Bet

The following article originally appeared on the Elevate newsletter and is being reposted here with the author’s permission. Peek under the hood of most “production agents” shipping today and you won’t find intelligence. You’ll find custom plumbing, fragile session logic, shared service accounts, and a security model held together by hope. This can be so […]

O'Reilly Radar — AI/ML
CVE-2026-45755: Mailtrap Mailer Webhook Parser Never Verifies the X-Mt-Signature HMAC: Unauthenticated Webhook Event Injection
Programmation Web

CVE-2026-45755: Mailtrap Mailer Webhook Parser Never Verifies the X-Mt-Signature HMAC: Unauthenticated Webhook Event Injection

Affected versions Symfony versions >=7.2, =8.0, <8.0.12 of the Symfony Mailtrap Mailer component are affected by this security issue. The issue has been fixed in Symfony 7.4.12, 8.0.12. Description The Mailtrap mailer bridge ships…

Symfony Blog
CVE-2026-45756: JsonPath Evaluates Attacker-Controlled Regular Expressions in match()/search() Without Limits: ReDoS
Programmation Web

CVE-2026-45756: JsonPath Evaluates Attacker-Controlled Regular Expressions in match()/search() Without Limits: ReDoS

Affected versions Symfony versions >=7.3, =8.0, <8.0.12 of the Symfony JSON Path component are affected by this security issue. The issue has been fixed in Symfony 7.4.12, 8.0.12. Description The JsonPath component's match() and search()…

Symfony Blog
CVE-2026-47212: Twilio Notifier Webhook Parser Never Verifies the X-Twilio-Signature HMAC: Unauthenticated Webhook Event Injection
Programmation Web

CVE-2026-47212: Twilio Notifier Webhook Parser Never Verifies the X-Twilio-Signature HMAC: Unauthenticated Webhook Event Injection

Affected versions Symfony versions >=6.4, =7.0, =8.0, <8.0.12 of the Symfony Twilio Notifier component are affected by this security issue. The issue has been fixed in Symfony 6.4.40, 7.4.12, 8.0.12. Description The…

Symfony Blog
CVE-2026-45754: Mailjet and LOX24 Webhook Parsers Never Verify the Configured Secret: Unauthenticated Event Injection
Programmation Web

CVE-2026-45754: Mailjet and LOX24 Webhook Parsers Never Verify the Configured Secret: Unauthenticated Event Injection

Affected versions Symfony versions >=6.4, =7.0, =8.0, <8.0.12 of the Symfony Lox24 Notifier and Symfony Mailjet Mailer components are affected by this security issue. The issue has been fixed in Symfony 6.4.40, 7.4.12,…

Symfony Blog
Gemini 3.5 Flash: more expensive, but Google plan to use it for everything
IA Programmation

Gemini 3.5 Flash: more expensive, but Google plan to use it for everything

Today at Google I/O, Google released Gemini 3.5 Flash. This one skipped the -preview modifier and went straight to general availability, and Google appear to be using it for a whole lot of their key products: 3.5 Flash is available today to billions of people globally: For everyone via the Gemini app and AI Mode in Google Search For developers in our agent-first development platform Google Antigravity and Gemini API in Google AI Studio and Android Studio For enterprises in Gemini Enterprise…

Simon Willison's Weblog