Infosecurity-magazine.com

Malicious VS Code Extensions Exploit Name Reuse Loophole

A new campaign involving malicious Visual Studio Code (VS Code) extensions has exposed a loophole in the VS Code Marketplace that allows threat actors to reuse names of previously removed packages.
ZDNet

Why I'm switching to VS Code. Hint: It's all about AI tool integration

Well, I guess it had to happen. I used profanity and pejoratively scolded an AI. I'm not proud. You could say I did it to myself, and that is true. But I did this for you, so please read on. Let's ...
Visual Studio Magazine

Threat Actors Keep Weaponizing VS Code Extensions

Threat actors continue to probe Visual Studio Code's extension ecosystem, and a late November incident shows how quickly a trusted developer tool can be turned into a supply chain beachhead. In a ...
InfoWorld

Visual Studio Code taps AI for merge conflict resolution

VS Code 1.105 also introduces a built-in MCP server marketplace and allows users to resume recent Copilot Chat sessions. Visual Studio Code 1.105, the latest release of Microsoft’s popular Visual ...