Many have run out of disk space entirely ...

Eclipse Foundation to require pre-publish security checks for Open VSX extensions to reduce VS Code supply-chain risk.

Microsoft outlines new AI reliability, agentic coding, and Copilot improvements coming to Visual Studio 2026, with a focus on ...

Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.

In a a robust Hacker News thread sparked by Jamf Threat Labs research, a VS Code team member defended the editor's Workspace ...

A new GlassWorm malware attack through compromised OpenVSX extensions focuses on stealing passwords, crypto-wallet data, and developer credentials and configurations from macOS systems.

Cybersecurity researchers from Socket’s Threat Research team have identified a developer-compromise supply chain attack ...

Izzi Software, owner of ColeSoft, the leading provider of debugging solutions for IBM mainframe environments, announces the upcoming release of z/XDC for Visual Studio Code, bringing its ...

Two VSCode extensions exfiltrated sensitive user data to Chinese servers ChatGPT – 中文版 and ChatMoss had over 1.5 million installs combined Extensions used hidden iframes, commands, and SDKs to steal ...

The January 2026 update has arrived.

First malicious Outlook add-in abused an abandoned domain to host a fake Microsoft login page, stealing 4,000+ credentials in ...

OpenAI launches GPT‑5.3‑Codex‑Spark, a Cerebras-powered, ultra-low-latency coding model that claims 15x faster generation speeds, signaling a major inference shift beyond Nvidia as the company faces ...