The Hacker News

North Korea-Linked Hackers Target Developers via Malicious VS Code Projects

North Korean hackers abuse Visual Studio Code task files in fake job projects to deploy backdoors, spyware, and crypto miners ...
The Hacker News

Evelyn Stealer Malware Abuses VS Code Extensions to Steal Developer Credentials and Crypto

Experts reveal Evelyn Stealer malware abusing VS Code extensions to steal developer credentials, browser data, and cryptocurrency wallets on Windows.
IEEE

CHARON: Polyglot Code Analysis for Detecting Vulnerabilities in Scripting Languages Native Extensions

Abstract: Scripting languages like Python or JavaScript are extremely popular among developers, in part due to their massive open-source ecosystems that enable smooth code reuse. However, recent work ...
InfoWorld

Visual Studio Code adds agent development extension

The Copilot Studio extension lets developers use any VS Code-compatible AI assistant to develop AI agents, then sync with ...
GitHub

A browser extension that adds a Code Wiki button to GitHub repositories

GitHub Code Wiki Button does not collect any data. In the future, GitHub Code Wiki Button may add the ability to save user settings on your device, but that data will not be sent to the server. In ...

ConsentFix debrief: Insights from the new OAuth phishing attack

ConsentFix is an OAuth phishing technique abusing browser-based authorization flows to hijack Microsoft accounts. Push ...
Visual Studio Magazine

VS Code December 2025 Update Puts AI 'Agent Skills' Front and Center

Visual Studio Code 1.108 expands AI capabilities with experimental Agent Skills for Copilot, alongside updates to chat ...
GitHub

Visual Studio / Code for Command Palette

This project provides a command palette extension for opening Visual Studio solutions and Visual Studio Code workspaces from a single, unified interface. Because the application is first signed by the ...