Critical vulnerabilities in four widely used VS Code extensions could enable file theft and remote code execution across 125M ...

Three of the four vulnerabilities remained unpatched months after OX Security reported them to the maintainers.

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...

The Conductor extension now can generate post-implementation code quality and compliance reports based on developer specifications.

In a a robust Hacker News thread sparked by Jamf Threat Labs research, a VS Code team member defended the editor's Workspace ...

What is Visual Studio Borderless Gaming Integration? Visual Studio Borderless Gaming Integration is a specialized extension set that brings powerful borderless windowed mode management tools directly ...

A new malware-as-a-service (MaaS) called 'Stanley' promises malicious Chrome extensions that can clear Google's review process and publish them to the Chrome Web Store. Researchers at end-to-end data ...

Two coding‑assistant add‑ons exfiltrate source code and telemetry to China‑based servers, affecting about 1.5m installs. Two AI‑powered extensions listed on Microsoft’s Visual Studio Code (VS Code) ...

The project is in an experimental, pre-alpha, exploratory phase with the intention to be productionized. We move fast, break things, and explore various aspects of the seamless developer experience ...

A new malware campaign is targeting software developers with a new information stealer called Evelyn Stealer, which weaponizes the Microsoft Visual Studio Code (VS Code) extension ecosystem. According ...

Visual Studio 2026 includes GitHub Copilot functionality built into the IDE, while third-party AI coding assistants remain available through the Visual Studio Marketplace. Using Marketplace install ...