On April 7, Microsoft released Agent Framework 1.0, the production-ready unification of Semantic Kernel and AutoGen into a single open-source SDK delivering stable APIs, long-term support commitment, and enterprise-grade multi-agent orchestration.

Source: DEV Community

DigitalOcean acquired Katanemo Labs and its open-source agent platform Plano, strengthening its position in AI agent management with developers getting better infrastructure for building, monitoring, and scaling agents.

Source: AI Agent Store

Researchers at RIT released AudAgent, a tool monitoring AI agents handling sensitive information, which found Claude, Gemini, and DeepSeek agents failed to refuse Social Security numbers while operating in under 0.1 milliseconds.

Source: AI Agent Store

As of April 5, 2026, ChatGPT's biggest updates include GPT-5.4 Thinking, deep research upgrades, File Library, shopping tools, CarPlay, and interactive learning features.

Source: imidef

GPT-5.4 reportedly brings a million-token context window and extreme reasoning mode as of April 2026, and currently leads in computer-use capabilities according to independent benchmarks.

Source: AI Tools Recap

OpenAI is preparing GPT-5.5 Spud (successor with evolved agentic capabilities) and GPT Image 2 (new image generation model) for 2026 release.

Source: Pasquale Pillitteri

Fortinet released out-of-band patches for CVE-2026-35616 (CVSS 9.1), a pre-authentication API access bypass vulnerability in FortiClient EMS versions 7.4.5 through 7.4.6, with full patching in version 7.4.7. Zero-day exploitation was observed earlier this week. CISA added it to the Known Exploited Vulnerabilities catalog on April 6, 2026.

Source: The Hacker News

CVE-2026-40175 is a critical severity vulnerability (CVSS 10) in Axios library prior to 1.15.0 vulnerable to Prototype Pollution escalation into Remote Code Execution or Full Cloud Compromise via AWS IMDSv2 bypass, fixed in version 1.15.0. This vulnerability was publicly disclosed on April 10, 2026.

Source: TheHackerWire

CISA added CVE-2026-35616 to its Known Exploited Vulnerabilities (KEV) Catalog on April 6, 2026, based on evidence of active exploitation of the Fortinet FortiClient EMS improper access control vulnerability.

Source: CISA

CVE-2026-33788 is a missing authentication vulnerability in Juniper Networks Junos OS Evolved on PTX Series allowing local authenticated attackers with low privileges to gain direct access to Flexible PIC Concentrators (FPCs), reported April 10, 2026.

Source: RedPacket Security

A missing authorization vulnerability in the CLI of Juniper Networks Junos OS on MX Series allows local authenticated users with low privileges to execute commands leading to complete compromise of managed devices, announced April 10, 2026.

Source: RedPacket Security

VS Code releases a stronger agent-native experience with the new VS Code Agents companion app, plus integrated browser and terminal tool improvements for smoother automation, better session monitoring, and more capable background command handling.

Source: Releasebot

Releases v1.111 through v1.115, shipped throughout March and early April 2026, include Autopilot for fully autonomous agent sessions (in public preview), integrated browser debugging, image and video support in chat, and a new unified editor for managing chat customizations.

Source: GitHub Changelog

VS Code moved to weekly stable releases. This represents a significant change from the previous release cadence, enabling faster iteration on new features and fixes.

Source: GitHub Changelog

AWS DevOps Agent helps run cloud operations by investigating incidents and reducing time to resolution. Customers like United Airlines and T-Mobile report up to 75% lower MTTR and 3 to 5 times faster resolution. AWS Security Agent brings continuous penetration testing into the development lifecycle, with customers like LG CNS reporting over 50% faster testing and ~30% lower costs.

Source: AWS Blog

Database Savings Plans now support Amazon OpenSearch Service and Amazon Neptune Analytics, allowing users to save up to 35% on eligible serverless and provisioned instance usage with a one-year commitment, automatically applying regardless of engine, instance family, size, or AWS Region.

Source: AWS Blog

When environment health is degraded, Elastic Beanstalk can now collect recent events, instance health, and logs and send them to Amazon Bedrock for analysis, providing step-by-step troubleshooting recommendations.

Source: AWS Blog

Starting March 1, 2026, VPC Encryption Controls transitions from free preview to a paid feature, allowing users to audit and enforce encryption-in-transit of all traffic flows within and across VPCs, with monitor mode to detect unencrypted traffic and enforce mode to prevent it.

Source: AWS Blog

Anthropic announced Project Glasswing on April 9, 2026, involving a new frontier model Claude Mythos2 Preview with advanced cybersecurity capabilities. The initiative provides access to 12 major companies including Amazon, Apple, and Microsoft to identify and fix software vulnerabilities at scale, with $4M contributed to open-source security.

Source: Anthropic Official

Anthropic announced on April 6, 2026 an expansion of its use of TPU chips and Google Cloud services as it scales development of foundation models, agents, and enterprise applications. Partnership with Broadcom also included major AI chip deals for infrastructure growth.

Source: Google Cloud Press Corner

Claude Cowork became generally available on April 2026 for macOS and Windows in the Claude Desktop app, including expanded analytics, OpenTelemetry support, and role-based access controls for Enterprise plans. Claude Code also received major releases with Focus view, improved permissions handling, and enhanced sandbox features.

Source: Anthropic Release Notes