Those project files you deleted might not actually be deleted.

Eclipse Foundation to require pre-publish security checks for Open VSX extensions to reduce VS Code supply-chain risk.

Cybersecurity researchers from Socket’s Threat Research team have identified a developer-compromise supply chain attack ...

In a a robust Hacker News thread sparked by Jamf Threat Labs research, a VS Code team member defended the editor's Workspace ...

With the CLI tool winapp, Microsoft wants to simplify Windows development for cross-platform developers. It handles SDK ...

Xbox has been having a hard time selling consoles lately, and it didn't get any better over the 2025 holiday quarter.

There are about 1.4 billion websites in the world—more than 26 million of them for ecommerce—vying for shoppers’ attention. A well-designed website can help ...

The January 2026 update has arrived.

Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.

Open VSX supply chain attack hijacked VS Code extensions delivered GlassWorm malware stealing macOS, crypto, and developer ...

I have zero programming experience. But after a few minor setbacks, I was able to build a custom website in no time.

Two malicious VS Code extensions have exfiltrated code snippets, API keys, and proprietary algorithms from 1.5 million ...