GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain attacks on developers.

First version of a web extension allowing you to view IDL code and notebooks directly in the browser — lightweight for now, but a step toward full desktop/browser parity See the changelog for full ...

It's more than just a code editor.

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...

The way software is developed has undergone multiple sea changes over the past few decades. From assembly language to cloud-native development, from monolithic architecture to microservices, from ...

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...

GitHub has added Anthropic's Claude Opus 4.5 to the set of models available in GitHub Copilot Chat, and the model is now selectable directly inside Microsoft developers' primary tools: Visual Studio ...

Treat this as an immediate security incident, CISOs advised; researchers say it’s one of the most sophisticated supply chain attacks they’ve seen, and it’s spreading. A month after a self-propagating ...

One of the many ways AI is transforming the world is through intelligent code completion and translating natural language to code. In this domain, OpenAI has been at the forefront with its GPT-3 ...

Amazon introduced a Nova Act extension to build and test AI agents directly inside integrated development environments including Visual Studio Code, Amazon’s Kiro, and Cursor. The company says the new ...