Cybersecurity researchers from Socket’s Threat Research team have identified a developer-compromise supply chain attack targeting macOS users, where ...

Two malicious VS Code extensions have exfiltrated code snippets, API keys, and proprietary algorithms from 1.5 million ...

A fake VS Code extension posing as a Moltbot AI assistant installed ScreenConnect malware, giving attackers persistent remote ...

A hands-on test compared Visual Studio Code and Google Antigravity on generating and refining a simple dynamic Ticket Desk ...

An official Model Context Protocol extension Anthropic's Claude can now present the interfaces of other applications within ...

Two VSCode extensions are harvesting sensitive data and sending it to China.

Security researchers found two AI-branded VS Code extensions with 1.5M installs that covertly send source code and files to ...

VS Code forks like Cursor, Windsurf, and Google Antigravity may share a common foundation, but hands-on testing shows they ...

The project is in an experimental, pre-alpha, exploratory phase with the intention to be productionized. We move fast, break things, and explore various aspects of the seamless developer experience ...

Threat actors behind the campaign are abusing Microsoft Visual Studio Code’s trusted workflows to execute and persist ...

Microsoft has made its development tool XAML Studio open source, eight years after its initial release. Version 2.0 is next, and some new features are planned, which interested parties can already try ...

The Webview UI Toolkit for VS Code will be deprecated on January 1, 2025. See the deprecation announcement for more details. Webviews are a powerful way to add custom functionality beyond what the ...