Google announced the Gemini 3.5 model family at I/O 2026 and debuted a new AI agent framework. The announcement occurred on May 20, 2026, as Gemini reached 900 million monthly users.

Source: TechnoTime

Production costs for open-source AI agents range from $50 to $2,000 monthly in LLM costs plus hosting. Premium models like Claude Opus 4.7 and GPT-5.5 cost $15-30 per million input tokens, while lighter models like Gemini 3.1 Flash or Claude Haiku 4.5 cost below $5 per million tokens.

Source: Pasquale Pillitteri

NanoCo, creator of NanoClaw, has surpassed 250,000 downloads and nearly 30,000 GitHub stars. The company builds and deploys AI assistants for enterprise customers.

Source: YNet News

OpenAI released GPT-5.5 Instant on May 5, 2026 as the new default ChatGPT model, replacing GPT-5.3 Instant. The model reduces hallucinations by 52.5% in high-stakes domains like medicine, law, and finance, while maintaining low latency and achieving 81.2 on the AIME 2025 math test versus 65.4 for the older model.

Source: TechCrunch

On May 15, 2026, OpenAI launched a new personal finance experience in ChatGPT for Pro users in the United States, featuring secure account connections, a money dashboard, and grounded financial Q&A. The feature uses GPT-5.5 Thinking for complex financial reasoning and is available on web and iOS.

Source: OpenAI Release Notes

CVE-2026-31431 (also known as "Copy Fail") is a high-severity local privilege escalation (LPE) vulnerability affecting the Linux kernel's cryptographic subsystem. The exploit is 732 bytes of Python with no races, no disk writes, and no forensic residue. CISA added it to the Known Exploited Vulnerabilities catalog with a May 15 remediation deadline.

Source: Microsoft Security Blog

A critical NGINX vulnerability (CVE-2026-42945) disclosed last week is being exploited by attackers, and can be reliably exploited to trigger a denial-of-service condition and potentially allow for unauthenticated remote code execution. VulnCheck's canary systems began flagging exploitation attempts on May 16, three days after the vulnerability and PoC had been made public.

Source: Help Net Security

Microsoft's May 2026 Patch Tuesday addresses 120 flaws with 17 "Critical" vulnerabilities, 14 of which are remote code execution. Other vendors released updates including Adobe, AMD, Apple, and Cisco with various security fixes.

Source: BleepingComputer

CISA has added CVE-2026-6973 (Ivanti Endpoint Manager Mobile improper input validation vulnerability) to its Known Exploited Vulnerabilities Catalog based on evidence of active exploitation. The vulnerability was disclosed on May 7 with a May 10 due date.

Source: CISA

Attackers are exploiting two Microsoft Defender vulnerabilities (CVE-2026-41091 and CVE-2026-45498), which Microsoft acknowledged and CISA confirmed by adding to its Known Exploited Vulnerabilities catalog. CVE-2026-41091 allows for local privilege elevation, while CVE-2026-45498 can cause a denial-of-service state.

Source: Help Net Security

Released May 20, 2026, version 1.121 adds built-in Mermaid and HTML previews, streamlines terminal tool behavior for agents, and lets you run agent sessions on remote machines. Features include model configurability to configure which models handle lightweight tasks, Mermaid diagram preview rendering, and HTML file preview without extensions.

Source: Visual Studio Code Official

GitHub confirmed that attackers breached its private code repositories after an employee installed a malicious VS Code extension. The malicious VS Code extension behind the GitHub breach is Nx Console with 2.2 million installs, and a completely separate extension called Nx Console was briefly backdoored but the community caught that in 11 minutes.

Source: Help Net Security

VS Code moved to weekly stable releases, with releases v1.116 through v1.119 shipped throughout April and early May 2026. Features include semantic codebase search, agents gaining inline diffs in chat, browser tab sharing, and read/write access to any open terminal.

Source: GitHub Changelog / Visual Studio Code Official

AWS launched Amazon Quick AI assistant with desktop app and new Free/Plus pricing plans. AWS expanded partnership with OpenAI bringing GPT-5.5, GPT-5.4, Codex, and Amazon Bedrock Managed Agents to limited preview. Amazon Connect expanded into four agentic AI solutions for supply chain, hiring, customer experience, and healthcare.

Source: Amazon Web Services Blog

AWS announced EC2 M8in/M8ib instances with up to 43% performance improvement over M6 generation with 600 Gbps network bandwidth. EC2 R8in/R8ib memory-optimized instances launched for databases and data lakes. Amazon Q Developer IDE plugins reach end-of-support April 30, 2027, with new signups blocked May 15, 2026.

Source: Amazon Web Services Blog

Amazon Bedrock AgentCore previewed managed payment capabilities enabling AI agents to autonomously access and pay for APIs and web content. Agent Toolkit for AWS launched as production-ready suite for AI coding agents. AWS MCP Server reached general availability for authenticated access to AWS services.

Source: Amazon Web Services Blog

Over 40 observability launches across CloudWatch, X-Ray, Managed Grafana, and Managed Service for Prometheus through May 2026. Major focus on OpenTelemetry as unified instrumentation standard and AI-powered operations. New support for HTTP Log Collector, ND-JSON, Structured JSON, and OpenTelemetry protocols.

Source: AWS Cloud Operations Blog

AWS introduced Graviton5 processors as its most powerful CPU for broad workloads. Amazon Bedrock AgentCore, Trainium3 UltraServers, and AI Factories announced for enterprise AI infrastructure. Partnership with Cerebras for accelerated AI inference speed in AWS data centers.

Source: About Amazon - AWS News

On May 14, 2026, Anthropic announced a $200 million partnership with the Gates Foundation committing grant funding, Claude usage credits, and technical support for programs in global health, life sciences, education, and economic mobility over the next four years.

Source: Anthropic Official News

Anthropic launched Claude for Small Business on May 13, 2026, bringing Claude integration into tools like QuickBooks, PayPal, HubSpot, Canva, Docusign, Google Workspace, and Microsoft 365 with ready-to-run workflows for payroll, invoicing, sales, marketing, and month-end close.

Source: Anthropic Official News

Anthropic added Fast mode support for Claude Opus 4.7 in research preview, enabling faster output token generation. The feature uses the fast-mode-2026-02-01 beta header and offers premium pricing with same rate limits and access as Opus 4.6 fast mode.

Source: Anthropic Official News

Anthropic launched cache diagnostics in public beta for the Claude Developer Platform. The feature passes diagnostics.previous_message_id on Messages requests and reports cache_miss_reason explaining where the prompt cache prefix diverged from the previous turn.

Source: Anthropic Official News