Infosecurity-magazine.com

GitHub Breach Traced to Malicious 'Nx Console' VS Code Extension

GitHub has confirmed that a recent breach into its internal repositories was caused by a vulnerability in a Microsoft Visual Studio Code (VS Code) extension called ‘Nx Console.’ The security team at ...
VentureBeat

GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK

GitHub confirmed on May 20 that a poisoned VS Code extension installed on an employee’s device gave attackers access to roughly 3,800 internal repositories at the Microsoft-owned code storage and ...
Visual Studio Magazine

VS Code Updates Boost AI Agents, Terminal Control and Copilot Workflow

VS Code 1.115 introduced a preview Agents app in VS Code Insiders. VS Code 1.116 added persistent debug logs for current and past agent sessions. Both releases expanded how agents work with terminals, ...
VentureBeat

43% of AI-generated code changes need debugging in production, survey finds

The software industry is racing to write code with artificial intelligence. It is struggling, badly, to make sure that code holds up once it ships. A survey of 200 senior site-reliability and DevOps ...
InfoWorld

Visual Studio Code 1.115 introduces VS Code Agents app

Preview of new companion app allows developers to run multiple agent sessions in parallel across multiple repos and iterate on human and agent reviews. Visual Studio Code 1.115, the latest release of ...
techtimes

Top VS Code Extensions in 2026: Boost Productivity, Streamline Coding, and Save Time

VS Code Extensions have transformed the code editor into a productivity powerhouse. GitHub Copilot enables AI-powered autocomplete, multi-line code generation, and context-aware suggestions, helping ...
Visual Studio Magazine

Visual Studio Code 1.112 Adds Integrated Browser Debugging, More Copilot CLI Control

VS Code 1.112 shipped March 18 with expanded Copilot agent autonomy controls. A new Autopilot permission level lets Copilot CLI run tasks without user approval dialogs. MCP server sandboxing restricts ...
Detroit Free Press

Detroit University Prep peters out vs Hudsonville Unity Christian

EAST LANSING — It got ugly quick for Detroit University Prep in the program's first trip to the Breslin Center for the MHSAA boys basketball state semifinals. The Panthers (17-10) were no match for a ...
InfoWorld

Visual Studio Code previews agent plugins

Latest VS Code update introduces prepackaged bundles of chat customizations that can include skills, commands, agents, MCP servers, and hooks. Microsoft has released Visual Studio Code 1.110, an ...
CSOonline

Flaws in four popular VS Code extensions left 128 million installs open to attack

Critical and high-severity vulnerabilities were found in four widely used Visual Studio Code extensions with a combined 128 million downloads, exposing developers to file theft, remote code execution, ...
Dark Reading

DPRK Actors Deploy VS Code Tunnels for Remote Hacking

A spear-phishing campaign by North Korean actors is abusing a legitimate feature of Microsoft Visual Studio (VS) Code to gain full remote control of targeted systems. In the campaign, discovered by ...
CSOonline

Contagious Interview turns VS Code into an attack vector

Threat actors behind the campaign are abusing Microsoft Visual Studio Code’s trusted workflows to execute and persist malicious code. Threat actors behind the long-running Contagious Interview ...