SECURITY
2026 Annual AI CVEs Impact on Open-Source Software: Research and Mitigations
The 2025–2026 cycle marked a major transition in cybersecurity: AI systems stopped being just targets and became active participants in vulnerability discovery, exploitation, and defense. Open-source software (OSS) ecosystems were hit especially hard because modern AI stacks depend heavily on publicly accessible packages, plugins, vector databases, agent frameworks, inference