Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.

GitHub is making Claude by Anthropic and OpenAI’s Codex AI coding agents directly available inside GitHub today. A new public ...

The January 2026 update has arrived.

Security researchers found two AI-branded VS Code extensions with 1.5M installs that covertly send source code and files to ...

Microsoft’s new winapp CLI simplifies Windows app development with one-command setup, faster testing, and easier packaging.

Threat actors behind the campaign are abusing Microsoft Visual Studio Code’s trusted workflows to execute and persist ...

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...

You start by getting the official installer from the Visual Studio Code website. Open your preferred browser on Windows. Go to the Visual Studio Code download page ...

The Glassworm campaign, which first emerged on the OpenVSX and Microsoft Visual Studio marketplaces in October, is now in its third wave, with 24 new packages added on the two platforms. OpenVSX and ...

Microsoft has released the first version of Visual Studio 2026, introducing a major overhaul of its flagship IDE centered on AI, speed, and a modern user interface. Available through a new “Insiders ...

The Java ecosystem has historically been blessed with great IDEs to work with, including NetBeans, Eclipse and IntelliJ from JetBrains. However, in recent years Microsoft's Visual Studio Code editor ...

A new study of integrated development environments (IDEs) like Microsoft Visual Studio Code, Visual Studio, IntelliJ IDEA, and Cursor has revealed weaknesses in how they handle the extension ...