VS Code flaw exposes GitHub OAuth tokens via one-click attack on GitHub.dev, enabling private repo access and token theft.

Google AI Studio lets users test Gemini models, build apps, generate media, and export code. Here’s what it does, costs, and ...

The best code editor might actually be your best everything editor.

GitHub CISO Alexis Wales confirmed Thursday that a poisoned build of the Nx Console Visual Studio Code extension — live on ...

On April 29, 2026, someone slipped malicious code into four widely used SAP software packages. Within days, the infection had spread to at least 169 packages across the npm registry, the world’s ...

This bundle pairs a lifetime license of Microsoft Visual Studio Professional 2026 with 15 in-depth coding courses covering Python, JavaScript, Java, SQL and more, all for just $59.99 (regularly $1,999 ...

A large-scale campaign is targeting developers on GitHub with fake Visual Studio Code (VS Code) security alerts posted in the Discussions section of various projects, to trick users into downloading ...

Latest VS Code update introduces prepackaged bundles of chat customizations that can include skills, commands, agents, MCP servers, and hooks. Microsoft has released Visual Studio Code 1.110, an ...

Lazarus group’s Contagious Interview campaign abuses Visual Studio Code via malicious Git repositories Attackers deliver JavaScript payloads on macOS, enabling persistent data harvesting and C2 ...

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...

Microsoft is previewing a new AI-assisted tool for Visual Studio Code Insiders called the JavaScript/TypeScript Modernizer. It's designed to help developers modernize older JavaScript or TypeScript ...

Please create an issue before adding a rating. Keep in mind that I work full-time. I'd LOVE to have more contributors. See the Contributing section below. yarn add -D ...