Hermes Agent is an open-source, self-hosted AI agent framework released by Nous Research in February 2026. It runs on your own infrastructure rather than as a SaaS subscription and operates as a persistent autonomous agent that executes code and performs searches.

Source: Petronella Cybersecurity News

Comparison of leading open-source AI agent frameworks with CrewAI dominating for accessibility, LangGraph for control and production use cases, and AutoGen for research and prototyping applications.

Source: Pasquale Pillitteri

Coverage of agentic AI trends for 2026 including autonomous data analysis pipelines with PraisonAI Agent Framework and collaboration between NVIDIA and GE HealthCare on autonomous diagnostic imaging.

Source: AI Multiple

On May 5, 2026, OpenAI released GPT-5.5 Instant as the new default ChatGPT model, replacing GPT-5.3 Instant. The model reduces hallucination by 52.5% in sensitive areas like law, medicine, and finance, while achieving an 81.2 score on the AIME 2025 math test compared to 65.4 for the previous version.

Source: TechCrunch

On May 15, 2026, OpenAI launched a new personal finance experience in ChatGPT for Pro users in the United States. The feature uses GPT-5.5 Thinking to help with complex personal finance tasks and includes secure account connections and a money dashboard.

Source: Releasebot (OpenAI Release Notes)

GPT-5.5 Instant launched May 5, 2026, focusing on accuracy and conciseness with reduced emoji usage. The model produces 52.5% fewer hallucinated claims in medicine, law, and finance domains while maintaining low latency.

Source: 9to5Mac

Three critical Linux vulnerabilities disclosed in May 2026 (CVE-2026-42945 NGINX Rift on May 13, CVE-2026-31431 Copy Fail on April 29, and CVE-2026-43284/43500 Dirty Frag on May 7) form a reliable, race-free exploit chain allowing unauthenticated RCE from the public internet to root privilege escalation.

Source: Security Boulevard

Microsoft released 138 new CVEs in May 2026 including critical flaws: CVE-2026-41096 (Windows DNS RCE), CVE-2026-41089 (Windows Netlogon RCE on domain controllers with CVSS 9.8), and CVE-2026-40415 (TCP/IP use-after-free). Patch immediately for domain controller vulnerability.

Source: Zero Day Initiative

A maximum-severity vulnerability (CVSS 10.0) in LiteSpeed User-End cPanel Plugin versions 2.3-2.4.4 allows arbitrary script execution as root through incorrect privilege assignment. The vulnerability is being actively exploited in the wild. Fixed in version 2.4.5.

Source: The Hacker News

Microsoft addressed CVE-2026-45659, a remote code execution flaw in SharePoint (May 26, 2026) allowing authenticated attackers with minimum Site Member permissions to execute code remotely. Deserialization of untrusted data vulnerability.

Source: The Hacker News

SQL injection vulnerability (CVE-2026-9082, CVSS 6.5) in Drupal Core affecting all supported versions was added to CISA's Known Exploited Vulnerabilities catalog with evidence of active exploitation within two days of patch release. Patches available for versions 8.9 through 11.3.10.

Source: The Hacker News

VS Code 1.121 was released on May 20, 2026. The release adds built-in Mermaid and HTML previews, streamlines terminal tool behavior for agents, and lets users run agent sessions on remote machines with the ability to monitor and control agent sessions from the Agents window.

Source: Visual Studio Code Official Blog

VS Code 1.120 was released on May 13, 2026. The weekly update focuses on agent workflows, observability, trust controls, Markdown usability and engineering changes.

Source: Visual Studio Code Official Blog

A trojanized version of the Nx Console VS Code extension was live on Visual Studio Marketplace for only 18 minutes on May 18, 2026, but was enough for attackers to distribute a credential stealer capable of harvesting sensitive data from 1Password vaults, Anthropic Claude Code configurations, npm, GitHub, and AWS.

Source: The Hacker News

VS Code 1.119 was released on May 6, 2026. The release makes agent browser sharing more visible, permissioned and chat-driven.

Source: Visual Studio Code Official Blog

AWS launched Amazon Quick, an AI assistant for work featuring a new desktop app and expanded integrations, available with Free and Plus pricing plans. AWS also expanded its OpenAI partnership, bringing GPT-5.5, GPT-5.4, Codex, and Amazon Bedrock Managed Agents to limited preview on Amazon Bedrock infrastructure.

Source: Amazon Web Services Blog

Amazon EC2 M8in and M8ib instances are now generally available, powered by custom 6th-gen Intel Xeon Scalable processors, delivering up to 43% higher performance over M6in/M6ib with 600 Gbps network bandwidth. Amazon EC2 R8in and R8ib memory-optimized instances also launched with the same 6th-gen processors available across multiple regions.

Source: Amazon Web Services Blog

Amazon Bedrock AgentCore previewed managed payment capabilities enabling AI agents to autonomously access and pay for APIs, MCP servers, web content, and other agents. AWS released the Agent Toolkit for AWS, a production-ready suite of tools available at no additional charge to help AI coding agents build on AWS with enterprise-grade security controls.

Source: Amazon Web Services Blog

AWS announced general availability of the AWS MCP Server, a managed remote Model Context Protocol server giving AI agents and coding assistants secure, authenticated access to all AWS services. Amazon WorkSpaces for AI agents entered preview, allowing AI agents to securely access and operate desktop applications through managed environments.

Source: Amazon Web Services Blog

AWS announced that Amazon Q Developer IDE plugins and paid subscriptions will reach end of support on April 30, 2027. New signups are blocked starting May 15, 2026, and beginning May 29, 2026, Opus 4.6 will no longer be available on Q Developer Pro, with latest models including Opus 4.7 available exclusively on Kiro.

Source: Amazon Web Services Blog

Anthropic held a two-day developer event in London starting May 19, 2026, showcasing Claude Code capabilities. The event revealed significant adoption of AI-generated code, with nearly half of attendees having shipped pull requests completely written by Claude.

Source: MIT Technology Review

On May 14, 2026, Anthropic announced a $200 million partnership with the Gates Foundation, committing grant funding, Claude usage credits, and technical support for programs in global health, life sciences, education, and economic mobility over four years.

Source: Anthropic Official

Anthropic expanded Project Glasswing with Claude Security entering public beta, introducing new cyber verification tools for security teams. The initiative has scanned over 1,000 open-source projects and identified approximately 6,202 high- or critical-severity vulnerabilities.

Source: Releasebot

Anthropic introduced Claude for Small Business on May 13, 2026, as part of its expanding product lineup to serve different market segments.

Source: Anthropic Official