Useful submissions include

• The advisory, release note, CVE, patch, or primary research write-up.
• The exact discovery credit and whether it names an AI system directly.
• The affected product or codebase and fixed version.
• Any public statement from the finder or vendor that clarifies the AI role.

Please do not send

• Unpatched exploit details.
• Private screenshots without public source links.
• Speculation that a finding was AI-assisted.
• AI-generated vulnerability reports that have not been accepted upstream.

Prefer feeds? The RSS feed includes articles and findings as they are published.