Here's something that doesn't happen often: a trial that could actually reshape the entire artificial intelligence industry. This week, a federal courtroom in Northern California becomes the unlikely arena where Elon Musk and Sam Altman will argue over whether OpenAI betrayed the founding promise that made it different from every other tech giant chasing AI dominance.

The core of Musk's argument is straightforward, even if the legal machinery around it isn't. He claims that OpenAI — which he co-founded and funded in its early days — was built explicitly as a nonprofit dedicated to developing AI for the benefit of humanity. Under Altman's leadership, Musk argues, that mission has been quietly shelved in favor of building a for-profit empire. Musk wants the court to either force OpenAI back to its roots or hold Altman and co-founder Greg Brockman accountable for what he calls an outright theft of a charitable organization.

The stakes are genuinely high on both sides. If Musk prevails, OpenAI's plans to expand its commercial arm — the revenue engine meant to fund its nonprofit mission — could be severely curtailed. Altman and Brockman could lose their leadership roles entirely, and Altman's seat on the board would be in jeopardy. If Altman wins, OpenAI likely continues down a path that looks increasingly like every other big tech company: commercially driven, lightly accountable, and guided by a mission statement that becomes more decorative with each funding round.

One detail worth pausing on: this isn't a jury verdict situation. A federal judge, Yvonne Gonzalez Rogers, will make the final call in both phases of the trial. Jurors participate in the first phase, but their input is advisory. Gonzalez Rogers, who has handled major tech cases before, will ultimately decide what happens to one of the most powerful AI companies on earth.

OpenAI has pushed back hard on Musk's framing, portraying him as a bitter ex-partner who couldn't control the company he helped start and has since launched a competing AI venture through xAI. The implication is that the lawsuit is less about protecting charitable missions and more about slowing down a competitor while his own AI ambitions catch up. It's a credible read, given the timing.

But Musk threw a curveball late in the litigation by announcing he'd donate any damages he wins directly back to OpenAI's nonprofit arm. It's a clever move — it reframes him as the principled actor in the room rather than a litigant chasing a payout.

What makes this trial genuinely fascinating is what it says about the broader AI moment we're living through. The question of who controls powerful AI systems, and whether commercial incentives inevitably swallow safety-focused missions, isn't abstract anymore. It's being argued in open court, with two of the most prominent figures in tech history on opposite sides. Whatever the verdict, the AI industry will be taking notes.

A single Python script, released publicly this week, is capable of turning any unprivileged user into a root administrator on virtually every major version of Linux currently running in production. That is not a hypothetical. The exploit code works right now, and most systems have not been patched.

The vulnerability is called CopyFail, tracked as CVE-2026-31431, and it was disclosed Wednesday by researchers at security firm Theori — five weeks after they privately told the Linux kernel security team about it. Kernel patches exist for several versions, but the vast majority of Linux distributions had not yet shipped those fixes when the exploit code dropped publicly. That gap, between "patch exists" and "patch is installed," is exactly where attackers live.

What makes CopyFail especially alarming compared to most Linux vulnerabilities is its consistency. A lot of serious kernel exploits are finicky — they work on some versions, fail on others, require careful tuning for specific memory layouts. CopyFail does not have that problem. The same script works reliably across Ubuntu 22.04, Amazon Linux 2023, SUSE 15.6, and Debian 12, with no modification required. That kind of cross-distribution reliability is rare, and it significantly lowers the bar for attackers.

The flaw lives in the kernel's crypto API and stems from a straightforward logic error rather than a race condition or memory corruption bug. That is part of why it is so reliable — there is no timing window to hit, no heap spray to get right. The exploit works cleanly because the underlying mistake is clean.

The real danger here is not just that root access is possible. It is what "local" actually means in 2026. In a shared Kubernetes cluster, every container on the same node is sharing one Linux kernel. A CI/CD pipeline running untrusted code from a pull request is sharing that kernel. A cloud tenant on a shared hosting box is sharing it. An AI agent with shell access is sharing it. Once someone exploits CopyFail, the isolation those environments are supposed to provide collapses entirely.

The realistic attack chain is not exotic. An attacker finds a known vulnerability in a WordPress plugin, gets a shell as a low-privilege web server user, runs the CopyFail script, and is suddenly root on the host machine. Every other tenant on that box is now exposed. The initial intrusion does not need to be sophisticated — CopyFail handles the escalation.

Security teams managing Linux infrastructure should treat this as a drop-everything situation. Check whether your distribution has shipped the patched kernel version, and if it has not, start looking at what compensating controls you can put in place in the meantime — restricting unprivileged user namespaces is one option that can reduce exposure. The patch exists. The exploit is public. The window to act before attackers do is not wide.

Here's the part Meta's PR team doesn't want you to focus on: the $375 million verdict was just the opening act.

New Mexico Attorney General Raúl Torrez already secured that historic payout from Meta earlier this year in a landmark child safety case. Now he's back in a Santa Fe courtroom, and this time he's not asking for money. He wants to fundamentally change how Meta runs its platforms — and that's a much bigger deal.

Over the next three weeks, attorneys on both sides will argue a public nuisance case in which Torrez is pushing for a sweeping set of court-ordered reforms to Facebook, Instagram, and WhatsApp. The wish list is aggressive: mandatory age verification for New Mexico users, a ban on end-to-end encryption for minors, a 90-hour monthly screen time cap, the removal of engagement-maximizing features like infinite scroll and autoplay, and a requirement that Meta detect 99 percent of new child sexual abuse material on its platforms.

Torrez has been refreshingly blunt about why the money alone wasn't enough. For a company as profitable as Meta, nine figures can quietly get absorbed as an operating expense. The real leverage, he argues, is forcing the company to actually change how it builds its products.

The judge presiding over the case, Bryan Biedscheid, will ultimately decide which of those proposals are both relevant and technically feasible — a more deliberate process than the jury verdict that wrapped up in March. That means the outcome here could take considerably longer to materialize.

But here's where it gets interesting for the broader tech industry. Any order issued would technically only apply to Meta's operations in New Mexico. Meta could choose to implement the changes nationwide for the sake of operational simplicity — or it could do exactly what it's threatened and simply shut off its services in the state entirely. Neither option is a good look.

What really has the industry watching is the precedent question. If a judge is willing to dictate product design decisions to one of the world's largest tech companies, that signals to every other platform that courtrooms are now a viable venue for regulatory action — even when Congress hasn't managed to pass meaningful legislation.

The ripple effects extend beyond Meta. Thousands of other plaintiffs are currently pursuing similar cases against social media companies. A sweeping court order here doesn't directly bind those cases, but it would absolutely shift the negotiating dynamics in settlement talks across the board.

Some of Torrez's specific requests are already deeply controversial in tech policy circles. Age verification, for instance, almost certainly requires collecting more sensitive user data, which creates its own privacy concerns. Banning encryption for minors cuts against the security community's longstanding position that weakening encryption for any group ultimately weakens it for everyone.

The trial is a stress test for what courts can realistically demand from tech platforms. And the answer — whatever it is — matters well beyond the state of New Mexico.

Toyota spent $10 billion building a city, moved in exactly 100 people, and hung cameras on virtually every surface. Welcome to Woven City, the most expensive proof-of-concept in automotive history.

The project traces back to a 2020 Consumer Electronics Show announcement where Toyota CEO Akio Toyoda promised a living laboratory for the future of mobility. Six years and an estimated $10 billion later, the first wave of handpicked residents — called "Weavers" — began settling into a sensor-packed mini-metropolis built atop a former factory site near Mount Fuji. It is, depending on your disposition, either one of the most ambitious urban experiments ever attempted or an extremely well-funded surveillance project with nice landscaping.

The camera density is the thing that grabs you first. A single intersection inside Woven City reportedly has eight cameras trained on it. Building ceilings are lined with them. Even the on-site coffee shop has half a dozen overhead. All of this footage feeds into what Toyota calls the Woven City AI Vision Engine, an agentic monitoring system designed to track, catalog, and flag activity across the entire development.

The stated purpose is road safety, and Toyota's reasoning is actually coherent. The company's CTO for the project, John Absmeier, makes the point that autonomous vehicle systems — however sophisticated their onboard sensors — can't see around corners. The only way to detect a child running out from behind a parked truck, the argument goes, is with fixed cameras watching the full environment and communicating warnings to approaching vehicles in real time. This is the vehicle-to-everything communications vision that the auto industry has been chasing for decades, and Woven City is Toyota's attempt to actually build it.

But the system can do more than spot pedestrians near crosswalks. A demo showed it identifying potential shoplifters in retail environments. Toyota says there's no facial recognition involved, but the platform can still follow individuals across the camera network using clothing as an identifier. That's a meaningful distinction that shrinks considerably the more you think about it.

The privacy tension here is real, and Toyota seems aware of it. The company surveyed people across multiple countries about their comfort with this kind of monitoring. Japanese respondents — the people actually living closest to Woven City — came out among the most privacy-conscious in the sample. That's a complicated finding for a project built almost entirely around the idea that ubiquitous sensing is a public good.

For now, Woven City is less a city than an experiment with residential ambitions. One hundred residents is a long way from the critical mass needed to test infrastructure at meaningful scale. But Toyota is playing a long game here, and the data being generated — about movement, behavior, safety incidents, and system performance — is presumably the whole point. The city is the product. The residents are the methodology.