OpenAI’s Codex just moved into Chrome, where the useful work and the risks live

OpenAI’s Codex Chrome extension pushes the coding agent into signed-in browser work, making it more useful for real tasks while raising new questions about access, approvals, and agentic AI risk.
Visual Studio Magazine

VS Code 1.119 Adds Agent Browser Sharing, OpenTelemetry Tracing

The new weekly update focuses on agent workflows, observability, trust controls, Markdown usability and engineering changes.
CSO Online

13 new critical holes in JavaScript sandbox allow execution of arbitrary code

Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...
Bleeping Computer

Flaws in popular VSCode extensions expose developers to attacks

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...
CSOonline

TigerJack’s malicious VSCode extensions mine, steal, and stay hidden

The coordinated campaign abuses Visual Studio Code and OpenVSX extensions to steal code, mine cryptocurrency, and maintain remote control, all while posing as legitimate developer tools. In a new ...
GitHub

How to use llama-vscode

llama-vscode is an extension for code completion, chat with ai and agentic coding, focused on local model usage with llama.cpp. Show llama-vscode menu by clicking "llama-vscode" in the status bar or ...
maketecheasier.com

How I Transformed VSCode Into My Favorite Markdown Editor

Visual Studio Code (VSCode) is a popular source code editor, thanks to its multi-platform support, lightweight nature, and excellent extensibility. While it’s typically used by software developers, it ...