GlassWorm uses a fake WakaTime VS Code extension to infect IDEs, deploy RATs, and steal data, prompting urgent credential ...

A quick hands-on proof of concept shows how Visual Studio's new custom-agent framework can be aimed at a real Blazor project, along with what else is new in the March update.

Preview of new companion app allows developers to run multiple agent sessions in parallel across multiple repos and iterate ...

Visual Studio Code 1.114 supports previewing videos in the image carousel, adds a Copy Final Response command to the chat context menu, and simplifies Copilot searches of codebases.

OpenClaw's Node for VS Code extension proved it can support a real local file-based workflow, but on Windows the experience still feels more like early infrastructure than finished tooling.

Open VSX bug misread scanner failures as clean results, letting malicious VS Code extensions go live before patch in v0.32.0.

Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace checks and silently installing malware onto developers’ systems. Threat ...

A large-scale campaign is targeting developers on GitHub with fake Visual Studio Code (VS Code) security alerts posted in the Discussions section of various projects, to trick users into downloading ...

VS Code keeps adding new features as time goes on, and if you weren't careful, you likely missed things like sticky scroll, zen mode, and more.

It says it is, but the reality is a little blurry.