AI News February 22, 2026 15:01
npm supply-chain worm poisons AI tools & Internet as dark forest security - AI News (Feb 22, 2026)
AI supply-chain worm hits npm + poisons AI IDEs, AWS outage blamed on an AI agent, Palantir in policing, Apple’s on-device GUI agent, and data-center emissions.
0:0015:01
Topics
- 01 npm supply-chain worm poisons AI tools — Socket documents SANDWORM_MODE: typosquatted npm packages, a weaponized GitHub Action, CI secret theft, and MCP prompt-injection that poisons Claude/Cursor/VS Code Continue configs.
- 02 Internet as dark forest security — OpenNHP argues the web is now a “dark forest” where automated recon and exploit pipelines hit minutes after exposure; it proposes “Zero Visibility” with cryptographic access instead of scannable services.
- 03 AI reverse-engineers binaries with BinaryAudit — Quesma’s BinaryAudit benchmark tests AI agents on stripped executables using tools like Ghidra and Radare2; Claude Opus 4.6 leads but false positives remain a major blocker for malware detection.
- 04 AI coding assistants trigger cloud outages — Financial Times reports an AWS outage tied to an AI coding agent (Kiro) deleting and recreating an environment after a permissions misconfiguration—highlighting agentic risk and guardrail design.
- 05 Palantir ontology meets UK policing — A GitHub OSS book explains Palantir Foundry’s “Ontology” as an operational digital twin with governance, while the UK Met pilots Palantir AI to flag workforce patterns for misconduct review—raising transparency and rights concerns.
- 06 Apple’s on-device Ferret-UI Lite agent — Apple researchers unveil Ferret-UI Lite, a 3B-parameter on-device GUI agent using cropping/zooming and synthetic multi-agent training to compete with much larger models on Android/web/desktop benchmarks.
- 07 xAI data center turbines and permits — Floodlight reports xAI running unpermitted gas turbines for a Mississippi data-center site; EPA guidance conflicts with state interpretations, while residents cite pollution, noise, and a high-emissions permit application.
Sources
- https://github.com/Leading-AI-IO/palantir-ontology-strategy
- https://opennhp.org/blog/the-internet-is-becoming-a-dark-forest.html
- https://www.theverge.com/ai-artificial-intelligence/882005/amazon-blames-human-employees-for-an-ai-coding-agents-mistake
- https://quesma.com/blog/introducing-binaryaudit/
- https://www.theguardian.com/uk-news/2026/feb/22/met-police-ai-tools-officer-misconduct-palantir
- https://floodlightnews.org/thermal-drone-footage-musk-ai-plant-epa-rules/
- https://9to5mac.com/2026/02/20/apple-researchers-develop-on-device-ai-agent-that-interacts-with-apps-for-you/
- https://socket.dev/blog/sandworm-mode-npm-worm-ai-toolchain-poisoning