Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...

Visual Studio Code extension faces March shutdown with no transition guidance Microsoft has abruptly announced the deprecation of Polyglot Notebooks with less than two months' notice, throwing the ...

Malware targets macOS developers via compromised VS Code extensions, stealing credentials and crypto data via ...

Microsoft enhances Visual Studio 2026 with AI reliability upgrades, better failure handling, and agentic workflows for enterprise development.

Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.

Microsoft outlines new AI reliability, agentic coding, and Copilot improvements coming to Visual Studio 2026, with a focus on ...

Microsoft ’s Visual Studio Code, installed as a Snap package on a Linux device, has a strange bug that keeps all the files ...

Eclipse Foundation to require pre-publish security checks for Open VSX extensions to reduce VS Code supply-chain risk.

Hackers have already published a fake Visual Studio Code extension that impersonates the assistant under its former name, ...

Cybersecurity researchers from Socket’s Threat Research team have identified a developer-compromise supply chain attack ...

A compromised Open VSX publisher account was used to distribute malicious extensions in a new GlassWorm supply chain attack.

Jake Peterson is Lifehacker’s Tech Editor, and has been covering tech news and how-tos for nearly a decade. His team covers all things technology, including AI, smartphones, computers, game consoles, ...