Besides its lightweight design and compatibility with all major operating systems, a massive collection of extensions is one ...

A suspicious Visual Studio Code extension with file-encrypting and data-stealing behavior successfully bypassed marketplace ...

A malicious extension with basic ransomware capabilities seemingly created with the help of AI, has been published on Microsoft's official VS Code marketplace.

Researchers say the malware was in the repository for two weeks, advise precautions to defend against malicious packages.

The Open VSX registry rotated access tokens after they were accidentally leaked by developers in public repositories and allowed threat actors to publish malicious extensions in an attempted ...

At its core, VS Code is built on an open source project called Code OSS, published under the permissive MIT license.

The threat actor behind the malware-as-a-service (MaaS) framework and loader called CastleLoader has also developed a remote access trojan known as CastleRAT. "Available in both Python and C variants, ...

The Python team at Microsoft is continuing its overhaul of environment management in Visual Studio Code, with the August 2025 release advancing the controlled rollout of the new Python Environments ...

Copilot Chat Extension Version: 0.29.0 VS Code Version: 1.102.0 OS Version: Windows (remote SSH into a Ubuntu server) Feature (e.g. agent/edit/ask mode): ? Selected model (e.g. GPT 4.1, Claude 3.7 ...

The public API of vscode-python exposes the function environments.updateActiveEnvironmentPath. This function only works, when operating within a workspace. If I open VSCode with just a single Python ...