Overview
Today’s roundup spotlights security and transparency headaches across AI and mobility, major product updates for collaboration and in-car AI, plus a few timely consumer deals.
Key takeaways
- Mercor, an AI recruiting startup, confirmed a security incident after an extortion group claimed it stole data tied to a compromise of the open-source LiteLLM project. (TechCrunch)
- Anthropic suffered a source-code exposure after a Claude Code 2.1.88 package included a source map revealing TypeScript files; users flagged a leaked Tamagotchi-style “pet” and an always-on agent. (The Verge)
- Salesforce announced a major, AI-heavy overhaul for Slack with around 30 new features focused on productivity and generative workflows. (TechCrunch)
- ChatGPT is now available from Apple CarPlay for devices running iOS 26.4+ with the latest ChatGPT app, bringing voice-based interaction to dashboards. (The Verge)
- Major robotaxi operators declined to disclose how often vehicles require remote human help during a Senate inquiry, highlighting a transparency gap. (TechCrunch)
- Toyota’s Woven Capital hired a new CIO and COO to accelerate investments in mobility, cybersecurity, and autonomous driving startups. (TechCrunch)
- Amazon’s Big Spring Sale ends tonight (11:59PM PT); notable highlights reported include near-best prices on AirPods Pro 3, discounts on chargers (Anker and others), and a Govee smart-bulb 4-pack deal. (The Verge)
What this means for builders and teams
- Treat open-source model projects as high-risk supply-chain vectors: audit dependencies, enable repository monitoring, and rotate secrets tied to dev tooling.
- Protect production data and implement breach-response playbooks; extortion incidents tied to model/tool compromises can expose internal systems.
- For teams building with hosted models or platform SDKs, watch for leaked artifacts (source maps, packages) and minimize sensitive logic in client-side bundles.
- Product and policy teams should push for clearer transparency from AV operators and AI platform vendors about failure modes and human intervention rates.
Quick consumer notes
- If shopping, the Big Spring Sale runs through 11:59PM PT tonight; reported highlights include AirPods Pro 3 price dips, up to 50% off select chargers, and a Govee smart-bulb 4-pack for about $27. (The Verge)
Sources
- Mercor hit by cyberattack linked to LiteLLM compromise — TechCrunch: https://techcrunch.com/2026/03/31/mercor-says-it-was-hit-by-cyberattack-tied-to-compromise-of-open-source-litellm-project/
- Anthropic is having a month — TechCrunch: https://techcrunch.com/2026/03/31/anthropic-is-having-a-month/
- Claude Code leak details — The Verge: https://www.theverge.com/ai-artificial-intelligence/904776/anthropic-claude-source-code-leak
- Slack AI makeover (30 features) — TechCrunch: https://techcrunch.com/2026/03/31/salesforce-announces-an-ai-heavy-makeover-for-slack-with-30-new-features/
- ChatGPT on Apple CarPlay — The Verge: https://www.theverge.com/ai-artificial-intelligence/904676/apple-carplay-openai-chatgpt
- Robotaxi companies refuse to disclose remote help frequency — TechCrunch: https://techcrunch.com/2026/03/31/robotaxi-companies-refuse-to-say-how-often-their-avs-need-remote-help/
- Toyota’s Woven Capital hires — TechCrunch: https://techcrunch.com/2026/03/31/toyotas-woven-capital-appoints-new-cio-and-coo-in-push-for-finding-the-future-of-mobility/
- Amazon Big Spring Sale coverage and deals — The Verge: https://www.theverge.com/gadgets/899580/best-amazon-big-spring-sale-2026-deals
- AirPods Pro 3 deal — The Verge: https://www.theverge.com/gadgets/898502/airpods-pro-3-amazon-big-spring-sale-2026-deal
- Chargers and accessory deals — The Verge: https://www.theverge.com/gadgets/904242/amazon-big-spring-sale-2026-baseus-anker-chargers-power-banks-batteries-deals
- Govee smart-bulb deal — The Verge: https://www.theverge.com/gadgets/904698/govee-smart-a19-led-color-bulbs-amazon-big-spring-sale-2026-deal
Not financial/professional advice.