On April 15, 2026, Databricks announced major enhancements to AI Gateway, now part of Unity Catalog as Unity AI Gateway, extending Unity Catalog's governance model to agentic AI so you can apply the same permissions, auditing, and policy controls to how agents access LLMs and interact with tools like MCP servers and APIs.

Source: Databricks Blog

April 9, 2026 marked the one-year anniversary of Google's Agent-to-Agent Protocol, with more than 150 organizations now participating, the GitHub repo passing 22,000 stars, and production deployments existing inside Azure AI Foundry and Amazon Bedrock AgentCore. The v1.0 release introduced Signed Agent Cards, which let agents cryptographically verify each other's identities before delegating tasks.

Source: DEV Community

Codenotary launched AgentMon, a new monitoring tool that helps companies track what their AI agents do. As more businesses deploy AI agents, they need to watch for data leaks, high costs, and security rule breaks. AgentMon monitors agent behavior, file access, and data patterns across different systems.

Source: AI Agent Store

OpenAI launched GPT-5.4-Cyber with $10M in grants to strengthen global defense capabilities, impacting developers, solo founders, and power users.

Source: MindWired AI

Microsoft patched 163 CVEs in April 2026 including two zero-day vulnerabilities in SharePoint and Microsoft Defender, with eight rated critical, 154 rated as important and one rated as moderate. This is the second largest Patch Tuesday release, nearing the record set by the October 2025 Patch Tuesday release with 167 CVEs.

Source: Tenable

On April 7, 2026, a zero-day vulnerability in Microsoft Defender (CVE-2026-33825) was publicly disclosed alongside a working proof-of-concept exploit, enabling local privilege escalation allowing an unprivileged user to gain SYSTEM-level access. The vulnerability was assigned a CVSS score of 7.8 and stems from a race condition in Windows Defender's file remediation logic.

Source: Picus Security

A high-severity security flaw in Apache ActiveMQ (CVE-2026-34197, CVSS score 8.8) came under active exploitation, with CISA adding it to the Known Exploited Vulnerabilities catalog, describing it as improper input validation leading to code injection and arbitrary code execution. The vulnerability had been hiding for 13 years according to Horizon3.ai researchers.

Source: The Hacker News

CVE-2026-35616 (CVSS score 9.1) is a pre-authentication API access bypass in FortiClient EMS allowing an unauthenticated attacker to execute unauthorized code via crafted requests. Zero-day exploitation was observed earlier this week, with exploitation attempts first recorded on March 31, 2026.

Source: The Hacker News

Cisco patched four critical vulnerabilities in Webex and Identity Services including CVE-2026-20184 (CVSS 9.8) for improper certificate validation and CVE-2026-20147 (CVSS 9.9) for RCE in Identity Services Engine via crafted HTTP requests.

Source: The Hacker News

VS Code shipped releases v1.111 through v1.115 throughout March and early April 2026, with highlights including Autopilot for fully autonomous agent sessions (in public preview), integrated browser debugging, image and video support in chat, and a new unified editor for managing chat customizations.

Source: GitHub Changelog

The Visual Studio 2026 April update was released on April 14, 2026, marking the beginning of a new era for Visual Studio with deep platform integration of AI, stronger fundamentals, and improved performance.

Source: Microsoft Learn

AWS DevOps Agent helps run cloud operations and investigation of incidents with up to 75% lower MTTR and 3 to 5 times faster resolution reported by preview customers. AWS Security Agent brings continuous penetration testing into the development lifecycle with customers seeing over 50% faster testing and ~30% lower costs.

Source: Amazon Web Services Blog

Amazon S3 Files transforms S3 buckets into shared file systems built on Amazon EFS technology with full file system semantics and low latency, allowing applications to access S3 data through both file system and S3 APIs simultaneously without code modifications.

Source: Amazon Web Services Blog

The AWS Kiro CLI team announced v2.0 on April 14th, 2026, which delivers a headless mode, Windows support and an updated, refreshed user interface.

Source: SD Times

April 9, 2026 release provides new versions for AWS Elastic Beanstalk platforms based on Amazon Linux 2023 with security updates including AMI, ECS based Docker, Corretto, PHP, Python, and Tomcat updates.

Source: AWS Documentation

Database Savings Plans now supports Amazon OpenSearch Service and Amazon Neptune Analytics, allowing customers to save up to 35% on eligible serverless and provisioned instance usage with a one-year commitment.

Source: Releasebot

Anthropic CEO Dario Amodei visited the White House on Friday for a meeting with President's White House Chief of Staff Susie Wiles, while his AI company battles the Trump administration in court for blacklisting its Claude AI model. The meeting took place as the US government is trying to balance its approach to Anthropic with the national security implications of its Mythos tool that can identify cybersecurity threats but also present a roadmap for hackers.

Source: CNN, Washington Post, Bloomberg

Anthropic announced a new agreement with Google and Broadcom for increased processing and compute capacity to power its Claude AI models. Anthropic bulked up its compute deal as the company has seen its run-rate revenue surge to $30 billion, with the majority of compute housed in the U.S. as an extension of the company's $50 billion commitment to invest in U.S. compute infrastructure.

Source: TechCrunch, Google Cloud

On April 14, 2026, Anthropic's Long-Term Benefit Trust appointed Vas Narasimhan to Board of Directors.

Source: Anthropic

Anthropic co-founder Jack Clark explained at the Semafor World Economy summit that the company was downplaying the administration's labeling as a supply-chain risk, and confirmed that the company talked to the government about Mythos, with reports indicating Trump officials were encouraging banks to test Mythos including JPMorgan Chase and Goldman Sachs.

Source: TechCrunch