The Snyk Node.js SDK interacts with the API to monitor and test open-source NPM projects that manage their dependencies via Yarn. Developers can compare dependency versions against a Snyk vulnerability database.
GitHub announced a number of new tools within its developer toolset. V4 of its API, the GitHub Marketplace and GitHub Apps highlight the announcements. V4 marks a significant transition as GitHub's core API is now the GitHub GraphQL API. The new version is far more flexible than previous versions.
A researcher has found a vulnerability in the latest version of reCAPTCHA that could let spambots bypass reCAPTCHA fields across millions of sites. The developer has a script that uses Google’s speech recognition API to solve audio challenges associated with the latest version of reCAPTCHA.