A compromised Open VSX publisher account was used to distribute malicious extensions in a new GlassWorm supply chain attack.
In a a robust Hacker News thread sparked by Jamf Threat Labs research, a VS Code team member defended the editor's Workspace ...
Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.
Microsoft announced that the Copilot Studio extension for the Visual Studio Code (VS Code) integrated development environment is now available to all users. Developers can use it to build and manage ...
Two malicious extensions in Microsoft’s Visual Studio Code (VSCode) Marketplace that were collectively installed 1.5 million times exfiltrate developer data to China-based servers. Both extensions are ...
Visual Studio Code 1.109 introduces enhancements for providing agents with more skills and context and managing multiple ...
Two VSCode extensions exfiltrated sensitive user data to Chinese servers ChatGPT – 中文版 and ChatMoss had over 1.5 million installs combined Extensions used hidden iframes, commands, and SDKs to steal ...
XDA Developers on MSN
4 VS Code forks built for specific tasks
The classic VS Code is great and all, but these specialized forks are better for certain programming tasks ...
The Conductor extension now can generate post-implementation code quality and compliance reports based on developer specifications.
Cybersecurity researchers from Socket’s Threat Research team have identified a developer-compromise supply chain attack ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results