The Hacker News

Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push

CVE-2026-3854 (CVSS 8.7) enabled GitHub RCE via git push, risking cross-tenant access to millions of repositories.
CSO Online

Critical GitHub RCE bug exposed millions of repositories

The now‑patched flaw allowed authenticated users to execute arbitrary code via crafted git push requests, affecting ...
Hosted on MSN

Anthropic quietly fixed flaws in its Git MCP server that allowed for remote code execution

Anthropic has fixed three bugs in its official Git MCP server that researchers say can be chained with other MCP tools to remotely execute malicious code or overwrite files via prompt injection.… The ...
SiliconANGLE

Anthropic’s official Git MCP server hit by chained flaws that enable file access and code execution

Anthropic PBC’s official Git Model Context Protocol server has several security vulnerabilities that can lead to arbitrary file access and, in some scenarios, full remote code execution triggered ...
InfoWorld

GitHub introduces registry for finding MCP servers

GitHub has launched the GitHub MCP Registry, a curated registry of Model Context Protocol (MCP) servers with repositories on GitHub. The GitHub MCP Registry was launched September 16 with MCP servers ...
Geeky Gadgets

Introducing GitHub MCP Servers to Simplify App Development with AI

What if you could spend less time on repetitive coding tasks and more time solving the problems that truly inspire you? The newly unveiled GitHub MCP Server promises to make this a reality. By ...
InfoWorld

GitHub launches Remote MCP server in public preview to power AI-driven developer workflows

With secure OAuth support and real-time repo access, the tool is designed to modernize AI assistant integration in enterprise workflows. GitHub has unveiled its Remote MCP server in public preview, ...