The Hacker News

Open VSX Bug Let Malicious VS Code Extensions Bypass Pre-Publish Security Checks

Open VSX bug misread scanner failures as clean results, letting malicious VS Code extensions go live before patch in v0.32.0.
InfoWorld

Microsoft accelerates pace of VS Code development

Microsoft is speeding up the delivery of its Visual Studio Code updates. Since last summer, the company has been making ...
The Hacker News

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers

GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain ...
XDA Developers on MSN

I replaced VS Code with this open-source editor and it's faster, lighter, and runs all my extensions

You also get to escape Microsoft telemetry tracking too.
Visual Studio Magazine

Microsoft Sharpens AI Toolkit for VS Code in Foundry Update

AI Toolkit for VS Code v0.30.0 adds a new Tool Catalog for discovering, configuring, and managing agent tools, including local stdio MCP servers and tools from the public Foundry catalog. A new Agent ...
Visual Studio Magazine

VS Code 1.111 Debuts Weekly Stable Cadence, Expands Agent Controls

VS Code 1.111 is the first weekly Stable release. Autopilot preview adds autonomous agent iteration in chat. New hooks and debugging tools target custom agent workflows. The March 9 release ...

Fake VS Code alerts on GitHub spread malware to developers

A large-scale campaign is targeting developers on GitHub with fake Visual Studio Code (VS Code) security alerts posted in the ...

Microsoft updates VS Code with new themes and adjustable AI reasoning in version 1.113

VS Code 1.113 adds new themes, AI reasoning controls, and nested subagents, improving workflows and customization for ...