FIND-20260330-001 |
HIGH |
Rust 1.94.1 released — CVE-2026-33055 and CVE-2026-33056 patched in Cargo tar crate |
Rust 1.94.1 was released on 2026-03-26 as a patch release. It updates Cargo's bundled tar crate from 0.4.44 to 0.4.45, f... |
FIND-20260330-002 |
HIGH |
Node.js March 2026 security releases — 7–9 CVEs per line (all active LTS + current) |
Node.js released security patches on 2026-03-24 for all active lines (v20.x, v22.x, v24.x, v25.x). Key CVEs: CVE-2026-21... |
FIND-20260330-003 |
HIGH |
PostgreSQL CVEs from February 2026 release — pgcrypto heap overflow, intarray code exec, pg_trgm privilege escalation |
PostgreSQL 18.3, 17.9, 16.13, 15.17, and 14.22 were released on 2026-02-26 patching four critical CVEs: CVE-2026-2005 (p... |
FIND-20260330-004 |
HIGH |
ClickHouse 26.2 — QBit vector type GA, time-based streaming inserts, TOTP auth, BigLake integration |
ClickHouse 26.2 (released 2026-03-16, latest stable v26.2.6.27 on 2026-03-28) is a major feature release with 25 new fea... |
FIND-20260330-005 |
HIGH |
Redpanda acquires Oxla — Agentic Data Plane with embedded SQL query engine on streaming data |
Redpanda acquired Oxla (distributed SQL engine, $11M raised) and launched the Agentic Data Plane (ADP). Oxla adds standa... |
FIND-20260330-006 |
HIGH |
obra/superpowers — 123k-star agentic skills framework (Shell, MIT) — ODS agent architecture alignment |
superpowers (obra/superpowers) is the #1 trending GitHub repo today with 123,850 stars. It is a Shell-based agentic skil... |
FIND-20260330-007 |
MEDIUM |
Yeachan-Heo/oh-my-claudecode — Teams-first multi-agent orchestration for Claude Code (16.5k stars) |
oh-my-claudecode (16,531 stars, TypeScript, MIT) is a multi-agent orchestration layer built on top of Claude Code. It en... |
FIND-20260330-008 |
MEDIUM |
infinyon/fluvio — Rust event stream processing framework (Apache-2.0, 5.2k stars) — Kafka-alternative in Rust |
Fluvio is a distributed event stream processing engine written entirely in Rust (Apache-2.0, 5,191 stars). It provides a... |
FIND-20260330-009 |
MEDIUM |
Tauri CLI v2.10.1 — Cargo feature comma-separation fix, updater signing key regression patched |
Tauri CLI v2.10.1 (2026-03-04) is a patch release fixing: support for comma-separated Cargo feature lists in all CLI com... |
FIND-20260330-010 |
MEDIUM |
Zero-ETL + event-driven architecture market surge in 2026 — metadata layer as new control plane |
2026 marks a tipping point for Zero-ETL adoption. Key industry trends: (1) CDC + federated queries replace batch ETL pip... |
FIND-20260330-011 |
MEDIUM |
Claude Code March 2026 — /loop recurring tasks, voice mode, 1M context (Opus 4.6), agent skills frontmatter |
Claude Code received major updates throughout March 2026 (versions 2.1.63–2.1.87+). Key additions: /loop command enables... |
FIND-20260330-012 |
HIGH |
Cargo tar-rs CVE-2026-33055 (CVSS 9.4 Critical) — archive smuggling via PAX header parser differential |
CVE-2026-33055 (CVSS 9.4 CRITICAL) in the Rust tar-rs crate (≤ 0.4.44) allows attackers to smuggle hidden TAR entries pa... |
FIND-20260330-013 |
LOW |
Mermaid v11.13.0 — Venn-beta and Ishikawa-beta diagrams, half-arrowheads, flowchart label fix |
Mermaid v11.13.0 (published 2026-03-09) introduces two new beta diagram types: venn-beta (Venn diagrams) and ishikawa-be... |