Critical vulnerabilities in four widely used VS Code extensions could enable file theft and remote code execution across 125M ...

Three of the four vulnerabilities remained unpatched months after OX Security reported them to the maintainers.

Two coding‑assistant add‑ons exfiltrate source code and telemetry to China‑based servers, affecting about 1.5m installs. Two AI‑powered extensions listed on Microsoft’s Visual Studio Code (VS Code) ...

Cybersecurity researchers have discovered two malicious Microsoft Visual Studio Code (VS Code) extensions that are advertised as artificial intelligence (AI)-powered coding assistants, but also harbor ...

Two malicious extensions in Microsoft’s Visual Studio Code (VSCode) Marketplace that were collectively installed 1.5 million times exfiltrate developer data to China-based servers. Both extensions are ...

The official Mermaid extension for Visual Studio Code enables developers to seamlessly create, edit, preview and integrate mermaid diagrams from within the VS Code. To use the AI diagramming feature, ...

The Copilot Studio extension for Visual Studio Code is now generally available, allowing agents to be developed and managed directly from the editor. The extension enables software-style workflows for ...

A new VS Code extension called Nogic visualizes codebases as interactive graphs and drew strong interest on Hacker News. Commenters praised the concept for understanding large or unfamiliar codebases, ...

The Image Editor extension for Visual Studio Code provides convenient tools for editing images directly within the editor. With this extension, you can perform various image editing tasks seamlessly ...