OpenAI Pulled the Plug on Sora
Six months after launch, OpenAI is killing its Sora video app. The standalone app hit #1 on the App Store back in September. Now it is gone.
The real fallout is the Disney deal. Disney pledged $1 billion and exclusive character rights to OpenAI in December. That deal is dead now. Turns out "high compute costs" is corporate for "this thing is bleeding money and generating deepfake lawsuits."
Hollywood was already nervous about AI video tools enabling nonconsensual imagery. OpenAI just proved them right by shipping it anyway, then pulling the plug when it got expensive and legally messy.
Arm Built a Chip for the First Time in 35 Years
Arm announced the AGI CPU. Not "AGI" like artificial general intelligence. It stands for something else but the marketing team knew exactly what they were doing.
The actual hardware is wild. Up to 136 Neoverse V3 cores on TSMC 3nm. 300 watts. 800 GB/s memory bandwidth. Arm claims 2x performance per rack versus the latest x86 platforms.
Meta is the launch partner. They will run these alongside their custom MTIA accelerators. OpenAI, Cerebras, Cloudflare, and SAP also signed up. This is a big deal because Arm has never sold finished silicon before. They have always licensed IP to other chipmakers.
If you are building AI infrastructure, pay attention. The CPU side of AI workloads just got a serious new option.
LiteLLM Got Supply Chain Attacked
A threat group called TeamPCP backdoored LiteLLM versions 1.82.7 and 1.82.8 on PyPI. The package gets 97 million monthly downloads. It sits in 36% of cloud environments.
The attack chain was clever. They compromised a Trivy GitHub Action first, then used that to steal PyPI publishing credentials from LiteLLM's CI/CD pipeline. The malicious versions were live for about three hours before PyPI quarantined them.
The payload was a .pth file that runs automatically on every Python process startup. If you installed those versions, it was harvesting credentials silently.
Check your lockfiles. Pin your dependencies. And for the love of all things holy, pin your CI/CD actions to specific commit hashes, not version tags.
Quick Hits
Google is rolling out Personal Intelligence to all free US users. Gemini can now pull from your Gmail, Photos, and YouTube data. Arcade launched ToolBench, a benchmark ranking how open enterprise apps are to AI agents. GitHub and Figma scored highest. Slack and Workday scored lowest.