Philip

Introducing Windsurf 2.0. Manage all your agents from one place and delegate work to the cloud with Devin - so your agents keep shipping even after you close your laptop.

Devin Review caught the axios supply chain attack for multiple Cognition customers before the attack was publicly known. These attacks will be 10x more frequent in the age of AI; it is critical that repo maintainers start using AI for defense as well. (showing one example below where Devin Review caught the attack within an hour of its release - text minorly edited for anonymization)

We are sharing an early preview of our ongoing SWE-1.6 training run. It significantly improves upon SWE-1.5 while being post-trained on the same pre-trained model - and it runs equally as fast at 950 tok/s. On SWE-Bench Pro it exceeds top open-source models. The preview model still exhibits some undesirable behaviors like overthinking and excessive self-verification, which we aim to improve. We are rolling out early access to a small subset of users in Windsurf.

Cognition has signed a definitive agreement to acquire Windsurf. The acquisition includes Windsurf’s IP, product, trademark and brand, and strong business. Above all, it includes Windsurf’s world-class people, whom we’re privileged to welcome to our team. We are also honoring their talent and hard work in building Windsurf into the great business it is today. This transaction is structured so that 100% of Windsurf employees will participate financially. They will also have all vesting cliffs waived and will receive fully accelerated vesting for their work to date. At Cognition we have focused on developing robust and secure autonomous agents, while Windsurf has pioneered the agentic IDE. Devin + Windsurf are a powerful combination for the developers we serve. Working side by side, we’ll soon enable you to plan tasks in an IDE powered by Devin’s codebase understanding, delegate chunks of work to multiple Devins in parallel, complete the highest-leverage parts yourself with the help of autocomplete, and stitch it all back together in the same IDE. Cognition and Windsurf are united behind a shared vision for the future of software engineering, and there’s never been a better time to build. Welcome to our new colleagues from Windsurf!

Excited for the launch of Devin 2.0!

🥁...drumroll please...🥁 After three days of intense competition, we’re proud to crown Dicegang as the champions of Capture The Flag. 2nd place: Bingus 3rd place: NU1L 4th place: GUPER SUESSER 5th place: Organizers Congratulations to all participants—you’ve showcased the innovation, precision, and skill that defines the future of cybersecurity. 💰 SAR 1,000,000 in prizes awarded! GAME. OVER. #CaptureTheFlag #BHMEA24 #BlackHatMEA

⚡️⚡️⚡️ Excited to welcome @ginkoid to the team. ⚡️⚡️⚡️

Congrats to @redpwnCTF and @ginkoid for getting first blood!

We publicly released our exploits for CVE-2022-0185 at github.com/Crusaders-of-R… and a public writeup at willsroot.io/2022/01/cve-20…. Thanks once again to FizzBuzz101, @clubby789 , @ryaagard , @Chronos190 , @ginkoid , and @chop0_ .

Congrats to @strellic & @ginkoid as well! It's the 4th intended solution so far. twitter.com/ndevtk/status/…

Happy first day of Cybersecurity Awareness Month! Check out a spotlight on two of our Bug Bounty researchers. github.blog/2021-10-01-cyb…

Writeup of some cool vulnerabilities in NPM I found with @ginkoid: robertchen.cc/blog/2021/09/2…

found some pretty cool vulnerabilities with @ginkoid, we’ll be doing a more in depth writeup soon-ish

💰 $524,250 in bounties awarded ⚡ More private bounties 🐞 A few favorite bugs Check out what our bug bounty program has been up to as we help secure GitHub! github.blog/2021-06-25-sev…

Security: Full CSP bypass through filesystem URIs (reward: $5000) crbug.com/1117687

Security: Full CSP bypass through blob: URIs (reward: $5000) crbug.com/1115628

Finally got around to doing a write-up: Breaking GitHub Private Pages for $35k This was my first and biggest bounty. Found with @ginkoid on @Hacker0x01 :) #togetherwehitharder robertchen.cc/blog/2021/04/0…