Daily News · 1 min read

Perplexity AI Updates: May 29, 2026

perplexity open-source security developer-tools

1. Perplexity Open-Sources “Bumblebee” Supply-Chain Scanner

Perplexity. Perplexity released Bumblebee, an open-source read-only tool that flags risky dependencies on a developer’s machine without invoking package managers or executing any install hooks. The read-only design is the interesting bit: most supply-chain scanners resolve and sometimes run package code to inspect it, which is itself an attack surface, and Bumblebee deliberately stays inert to avoid triggering malicious postinstall scripts. For teams worried about typosquatting and compromised transitive dependencies, a scanner that never runs the thing it is inspecting is a sensible default. Source