InfoWorld

Cybersecurity researchers have uncovered a chain of critical remote code execution (RCE) vulnerabilities in major AI inference server frameworks, including those from Meta, Nvidia, Microsoft, and open-source projects such as vLLM and SGLang. According to Oligo Security, these vulnerabilities stand out for the way they propagated. Developers copied code containing insecure patterns across projects…

Is Mojo still a contender for Python’s ML/AI crown? What languages outside of the Pythone ecosystem are good for data science? What’s the deal with Python dataclasses? And what’s this shiny new distributed-processing framework from the folks who gave us PyTorch? Find the answers to these questions and more, in this week’s report. Top picks for Python readers on InfoWorld Revisiting Mojo: A faster…

The tech world is abuzz with news of Amazon Web Services (AWS) and OpenAI signing a seven-year, $38 billion cloud computing deal , a partnership that promises high-powered AI advancements through massive infrastructure investments. AWS is providing OpenAI access to hundreds of thousands of Nvidia GPUs, including clusters of next-generation GB200 and GB300 chips networked via Amazon’s UltraServers…

Google has boosted its BigQuery data warehouse with three new managed AI-based SQL functions to help enterprises reduce the complexity of running large-scale analytics, especially on unstructured data. The functions — AI.IF, AI.CLASSIFY, and AI.SCORE — are designed to enable LLM usage for analytical tasks for enterprises on both structured and unstructured data directly within SQL queries. These …

The latest update to the Microsoft Visual Studio Code editor centers on Agent HQ, featuring a single view to start, monitor, and review agent sessions, whether local or remote. Also called the October 2025 release, Visual Studio Code 1.106 was published November 12. Downloads for Windows, macOS, and Linux can be accessed from visualstudio.com . Agent HQ provides multiple capabilities including th…

The AI marketspace is getting mighty crowded, and Chinese company Baidu is the latest player to launch its newest model into the world. At its Baidu World conference this week, it unveiled Ernie 5.0. Baidu CTO and head of AI Group Haifeng Wang said (via translated subtitles supplied by the conference) that Ernie 5.0’s technical route was to “adopt a unified auto-regression architecture for native…

Google has added Go to the list of languages supported by the company’s Agent Development Kit (ADK), a modular framework for developing and deploying AI agents. Introduced November 7 , ADK for Go offers an idiomatic, performant way to build agents, said Toni Klopfenstein, a Google developer relations engineer for ADK for Go. Source code can be found on GitHub . Developers can use Go’s concurrency…

Databricks and Snowflake are at it again, and the battleground is now SQL-based document parsing. In an intensifying race to dominate enterprise AI workloads with agent-driven automation, Databricks has added SQL-based AI parsing capabilities to its Agent Bricks framework, just days after Snowflake introduced a similar ability inside its Intelligence platform. The new abilities from Snowflake and…

OpenAI has introduced GPT-5.1, an update to its GPT-5 model, aiming to deliver faster responses, improved reasoning, and more flexible conversational controls as the company works to refine its ChatGPT experience for both consumer and enterprise users. The release includes new Instant and Thinking variants designed to offer more adaptive reasoning and a broader range of personalization options, t…

You can think of a Java stream as a pipeline through which data flows. Instead of manually writing loops and conditionals to process a list, you tell Java what should happen to each element, and the Java Stream API takes care of how it happens internally. A Java stream doesn’t hold data. Instead, it operates on an existing data source such as a List , Set , Map , or array. The stream applies a se…

In January 2025, OpenAI released Operator , the first large-scale agent powered by a computer-use model to control its own browser. The demo was impressive: an AI moving the mouse, clicking buttons, and performing actions like a human would. It was received as a major step toward general-purpose autonomy. But just eight months later, in August, OpenAI quietly discontinued Operator and rolled it i…

The move to building and training AI models at scale has had interesting second-order effects; one of the most important is improving how we run and manage massively distributed computing applications. AI training and inferencing both require huge distributed applications to build and refine the models that are at the heart of modern machine learning systems . As Brendan Burns, Microsoft CVP Azur…

Red Hat OpenShift 4.20 , the latest version of Red Hat’s Kubernetes -based hybrid cloud application platform, is now available. The Red Hat OpenShift 4.20 release features capabilities for accelerating AI workloads and strengthening security, according to Red Hat. Introduced November 11, OpenShift 4.20 can be accessed from the Red Hat OpenShift product page . For AI, new capabilities are designed…

Visual Studio 2026, the latest version of Microsoft’s signature IDE, is now generally available. Touted as an “AI-native intelligent development environment,” the IDE also features faster startup and improved user experience. Announced November 11 , the update can be downloaded from the Visual Studio homepage . Visual Studio 2026 uses AI intelligence for such things as complex debugging, performa…

A malicious npm package named “@acitons/artifact” was found impersonating the legitimate “@actions/artifact” module, directly targeting the CI/CD pipelines within GitHub Actions workflows. According to Veracode findings, the package was uploaded on November 7 and was designed to trigger during the build process of GitHub-owned repositories. Once executed inside a CI/CD runner, the payload capture…