Hello.
The main topics for this week are:
- Google DeepMind announces "Gemini 3" and "Deep Think" mode
- OpenAI declares "Code Red", moves up GPT-5.2 release
- Critical vulnerability "React2Shell" discovered in React and Next.js
This week, I strongly felt that the competition between Google and OpenAI has entered a new phase. On the other hand, the discovery of a critical vulnerability in React/Next.js, the foundation of web development, reminds us of the importance of fundamental security measures.
Google's launch of "Deep Think" mode in Gemini 3, which significantly enhances reasoning capabilities, followed by OpenAI's immediate "Code Red" declaration, is reminiscent of the browser wars and search engine wars of the past. The speed of technological evolution is accelerating again, and we developers are desperate not to miss the wave.
Meanwhile, vulnerabilities in foundational frameworks like "React2Shell" remind us how important the security footing is, even as AI improves development efficiency. While it's easy to be captivated by the evolution of AI models, we must not neglect the basics of building robust systems.
- Mainly focuses on AI and Web-related news collected recently.
- Dates may vary slightly.
New AI Models, Services, and Updates
Google DeepMind: Google DeepMind announces "Gemini 3" and "Deep Think" mode
Google announces next-generation model Gemini 3. Equipped with "Deep Think" mode that enhances reasoning capabilities, surpassing competitors in benchmarks.
Performance in complex reasoning tasks has improved significantly, becoming a threat to OpenAI's dominance.
Sources (Link Cards)
OpenAI: OpenAI declares "Code Red", moves up GPT-5.2 release
Following the rise of Gemini 3, Sam Altman declares "Code Red" internally. Accelerating preparations for the release of the rival GPT-5.2.
Symbolizes the intensifying AI development race. While performance improvements with GPT-5.2 are expected, there are also concerns about safety.
Sources (Link Cards)
xAI: xAI releases "Grok 4.20"
xAI releases new model Grok 4.20. Continuous updates to maintain competitiveness with other companies' models.
Increased options for AI models. Potential for improved usefulness of Grok for specific tasks and user demographics.
Sources (Link Cards)
Other AI Topics
Anthropic: Anthropic signs $200 million "Agentic AI" partnership with Snowflake
Anthropic partners with Snowflake to promote AI agent utilization on corporate data. Also part of preparations for IPO.
Integration of internal corporate data and advanced AI models progresses, increasing the practicality of business automation.
Sources (Link Cards)
OpenAI: User backlash over alleged ads in ChatGPT
Reports of ads appearing in ChatGPT responses are increasing, causing controversy in the user community.
Raises important discussions about the balance between AI service monetization models and user experience.
Sources (Link Cards)
Web Development Topics
Palo Alto Networks Unit 42: Critical vulnerability "React2Shell" discovered in React and Next.js
RCE vulnerability (CVE-2025-55182/66478) discovered in the Flight protocol of React Server Components, with exploitation already confirmed.
Affects many web apps. Users of frameworks like Next.js need to update immediately.
Sources (Link Cards)
General Tech Topics
Cloudflare: Major outage at Cloudflare affects Zoom, LinkedIn, and others
Outage caused by firewall configuration changes. Many global services temporarily unavailable.
An event that reaffirms the vulnerability of internet infrastructure and the risk of single points of failure.
Sources (Link Cards)
Microsoft: Microsoft begins AI-based upgrade to Windows 11 25H2
Machine learning introduced for Windows 11 25H2 upgrade rollout. Sequential automatic updates for devices that are ready.
While OS update stability improves, caution is needed for unexpected updates on unmanaged devices.
Sources (Link Cards)
SecurityWeek: Android December update fixes two zero-day vulnerabilities
Google releases monthly security patch for Android. Addresses two zero-day vulnerabilities that have already been exploited.
Urgent security update for mobile app developers and Android users.
Sources (Link Cards)