Eclipse Foundation to require pre-publish security checks for Open VSX extensions to reduce VS Code supply-chain risk.

Visual Studio Code 1.109 introduces enhancements for providing agents with more skills and context and managing multiple ...

Microsoft announced that the Copilot Studio extension for the Visual Studio Code (VS Code) integrated development environment is now available to all users. Developers can use it to build and manage ...

The way software is developed has undergone multiple sea changes over the past few decades. From assembly language to cloud-native development, from monolithic architecture to microservices, from ...

Two malicious extensions in Microsoft’s Visual Studio Code (VSCode) Marketplace that were collectively installed 1.5 million times exfiltrate developer data to China-based servers. Both extensions are ...

A hands-on test in VS Code showed Copilot using a degraded mockup image as the primary input to generate a working, navigation-capable web site, a significant step beyond last year's single-page ...

Cybersecurity researchers from Socket’s Threat Research team have identified a developer-compromise supply chain attack ...

In a a robust Hacker News thread sparked by Jamf Threat Labs research, a VS Code team member defended the editor's Workspace ...

First malicious Outlook add-in abused an abandoned domain to host a fake Microsoft login page, stealing 4,000+ credentials in ...

From technical compromise to AI-driven attacks, cyber criminals increasingly see software developers as prime targets, creating systemic risks CISOs must address.

An official Model Context Protocol extension Anthropic's Claude can now present the interfaces of other applications within its chat window, thanks to an extension of the Model Context Protocol (MCP).

Malware targets macOS developers via compromised VS Code extensions, stealing credentials and crypto data via ...