GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain attacks on developers.

Microsoft is speeding up the delivery of its Visual Studio Code updates. Since last summer, the company has been making ...

VS Code keeps adding new features as time goes on, and if you weren't careful, you likely missed things like sticky scroll, ...

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...

One IDE to rule them all. You won't want to use anything else.

The new release allows using experimental agent plug-ins and the new Agent Debug Panel offers detailed insights into chat ...

In the AI developer boom, some of the most important battlegrounds are not glamorous models or splashy chatbots. They are the quiet pipes that keep modern coding tools fed and up to date.

The Open VSX registry, used for installing extensions in editors compatible with Visual Studio Code (VS Code), will run on Amazon Web Services (AWS) infrastructure in Europe as part of a "strategic ...

Critical and high-severity vulnerabilities were found in four widely used Visual Studio Code extensions with a combined 128 million downloads, exposing developers to file theft, remote code execution, ...

Cybersecurity researchers from Socket’s Threat Research team have identified a developer-compromise supply chain attack targeting macOS users, where malicious versions of popular developer extensions ...

A new VS Code extension called Nogic visualizes codebases as interactive graphs and drew strong interest on Hacker News. Commenters praised the concept for understanding large or unfamiliar codebases, ...