You wire up an MCP server. Maybe it's Stripe, maybe it's your Postgres database, maybe it's a filesystem server you found on GitHub last week. Your agent discovers the tools, reads their schemas, and now it can call them. You
Agent
A collection of 3 posts
Malicious npm Packages With Valid SLSA Provenance: Inside the TanStack Attack
On 11 May 2026, between 19:20 and 19:26 UTC, someone published 84 malicious versions across 42 @tanstack/* npm packages. Six minutes, start to finish. @tanstack/react-router alone pulls north of 12 million weekly downloads, so the blast radius
The rise of AI agents: A Look at the state of agentic AI in 2025
Artificial intelligence has been through plenty of “next big things.” A decade ago everyone was talking about deep learning; by 2023 we were drowning in large language models. Now, in the middle of 2025, the discourse has shifted again. This