VS Code 1.127 enhances agent session management, introduces per-site browser permissions, and makes browser tools for agents ...
Malicious npm packages mimicking Rollup polyfill tooling steal browser data, crypto wallets, and AI tool credentials in a Lazarus-linked campaign.
VS Code’s secret weapons ...
JFrog says six malicious npm packages used hidden install-time execution, JSONKeeper fetches, and sandbox checks to enable remote access.
Lazarus Group concealed a four-module remote access toolkit inside six fake npm Rollup polyfill packages that fired at import ...
Sysdig detected attackers probing the CVSS 9.8 authentication bypass 13 days after the advisory, using one HTTP header to ...
Visual Studio Code 1.129 adds a dedicated process for running AI agent sessions and an experimental docked editor for reviewing agent-generated changes.
The new interface can be enabled in the settings. It comes with a floating card type interface that's getting popular in web ...
VS Code can use LLM models other than GitHub Copilot’s built-in providers for AI-assisted development, including local and offline models, but with some limits. Microsoft has been pushing hard to make ...
The JetBrains team has blessed .NET developers with a new version of ReSharper 2026.2, bringing a highly requested feature to ...
The Jscrambler client-side web security company disclosed that a threat actor published a malicious version of its npm ...
Microsoft says TypeScript 7, announced July 8, brings native Go performance to VS Code, Visual Studio and other editors.