All newsletters
2026-07-16
3 min read
AIAI ToolsSecurityBrowserLanguagesDevOpsOpen SourceDev Tools

Thinking Machines Launches Inkling & Microsoft Patches 621 Vulnerabilities & Chrome 150 & Firefox 152 Ship Critical Fixes

Mira Murati's Thinking Machines releases 975B-parameter open-weight model Inkling; Microsoft's July patch Tuesday brings record 621 CVEs amid AI-powered vulnerability discovery; Chrome and Firefox address critical security flaws.

AI & ML


  • Thinking Machines unveils Inkling, a 975-billion-parameter open-weight model with 41B active parameters trained on 45 trillion tokens of text, image, audio, and video data. The mixture-of-experts architecture competes with leading Chinese open models and aims to democratize AI beyond proprietary vendors. Read more
  • NVIDIA announces Cosmos 3 Edge, a 4-billion-parameter world model for Jetson that enables robots and vision AI agents to see, reason in real time, and generate actions on edge GPUs. Japan's robotics leaders are joining the Cosmos Coalition to deploy intelligent machines across manufacturing and robotics. Read more
  • Apple Intelligence receives regulatory approval in China with integration of Alibaba's Qwen model into iOS, iPadOS, macOS, and visionOS. Apple also partners with Baidu for Chinese-specific features, marking a key step after a 28% sales increase in Greater China during Q2. Read more
  • Chai Discovery raises $400M for its Chai-3 AI drug discovery model, which improves target success rates and binding affinity for antibodies. The startup demonstrates real-world deployment with major pharma partners using its CAD-like interface for molecular design. Read more

AI Coding Tools


  • JetBrains releases ReSharper 2026.2 RC, opening the IDE's intelligence to AI coding agents and bringing native GitHub Copilot integration alongside performance gains. Read more

Security


  • Microsoft releases a record 621 CVEs in July 2026 Patch Tuesday, with 416 Windows vulnerabilities including 63 Critical ratings and 26 scoring above 9.0 CVSS. Microsoft attributes the surge to AI-powered vulnerability discovery by its security teams. Read more
  • CISA warns of active exploitation of three SharePoint Server vulnerabilities: CVE-2026-32201, CVE-2026-45659, and CVE-2026-56164—all enabling remote code execution and authentication bypass on Internet-exposed instances across Subscription Edition, 2019, and 2016 versions. Read more
  • Mozilla patches two critical Firefox bugs—CVE-2026-15718 (invalid pointer in JavaScript: WebAssembly) and CVE-2026-15719 (site isolation in DOM: Navigation)—with exploit code already public in Firefox 152.0.6. Read more
  • Google fixes 15 vulnerabilities in Chrome 150, including two critical use-after-free bugs in Ozone (CVE-2026-15764 and CVE-2026-15765) affecting the cross-platform abstraction layer on Linux, ChromeOS, and Fuchsia. Read more
  • Broadcom patches critical authentication bypass in VMware Avi Load Balancer (CVE-2026-47865, CVSS 9.8) allowing malicious users with network access to access the Avi Control plane. Read more
  • Adobe releases fixes for 88 vulnerabilities, with critical flaws in ColdFusion, Commerce, Experience Manager, and Illustrator including CodeFusion bugs patched in ColdFusion 2025 Update 11 and 2023 Update 22. Read more

Browser & Web Platform


  • Chrome 150.0.7871.124/.125 and Firefox 152.0.6 roll out with critical patches. Chrome addresses 15 security defects with high-severity bugs in Skia, Libyuv, V8, Media, and GPU components; Firefox warns of public exploit code for its two critical bugs. Read more

Languages & Runtimes


  • Android 17 QPR1 Beta 7 releases with July 2026 security patch for Pixel devices (6a through 10a) and Android Emulator, addressing resolved issues and improving system stability. Read more

DevOps & Cloud


  • Render publishes guides on evaluating cloud platforms for production workloads, implementing continuous deployment in development workflows, and building API marketplaces with unified authentication and billing. Read more
  • AWS announces Iceberg REST endpoint support in Glue Data Catalog for zero-copy access to Apache Iceberg tables in S3 from Salesforce Data 360, enabling efficient data sharing without duplication. Read more

Open Source


  • tinyhumansai/openhuman launches as a personal AI super intelligence with local-first memory and agent fleet orchestration. Read more
  • NousResearch/hermes-agent and palmier-io/palmier-pro (macOS video editor with open-source core) join the ecosystem of agent-focused tools. Read more
  • paperclipai/paperclip provides open-source orchestration for teams of AI agents as a Node.js/React platform. Read more

Dev Tools & IDEs


  • VS Code adds agent hooks (Preview) enabling custom shell commands at lifecycle points during agent sessions, plus Copilot CLI sessions for background automation and validation workflows. Read more

Enjoyed this issue?

Get this in your inbox

Join 1,000+ developers getting daily tech updates.

Subscribe free