Critical vulnerabilities in four widely used VS Code extensions could enable file theft and remote code execution across 125M ...

Visual Studio Code 1.109 introduces enhancements for providing agents with more skills and context and managing multiple ...

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...

A proof of concept shows how multi-agent orchestration in Visual Studio Code 1.109 can turn a fragile, one-pass AI workflow into a more reliable, auditable process by breaking long tasks into smaller, ...

GitHub Copilot testing for .NET in Visual Studio 2026 v18.3 can generate tests for the xUnit, NUnit, and MSTest test frameworks.

In a new study, Vite is the most popular JavaScript tool, nearly surpassing webpack in usage. Only two percentage points separate them.

Google and Microsoft's new WebMCP standard lets websites expose callable tools to AI agents through the browser — replacing ...

A new VS Code extension called Nogic visualizes codebases as interactive graphs and drew strong interest on Hacker News. Commenters praised the concept for understanding large or unfamiliar codebases, ...

A fake CAPTCHA scam is tricking Windows users into running PowerShell commands that install StealC malware and steal passwords, crypto wallets, and more.

Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.

Four serious new vulnerabilities affect Microsoft Visual Studio Code, Cursor and Windsurf extensions, three of which remain ...