Microsoft shipped four VS Code releases across May and early June 2026 — versions 1.120 through 1.123 — that together crossed a threshold the company had been approaching for more than a year: ...
A security researcher has released exploit code for a Visual Studio Code (VS Code) zero-day vulnerability that allows attackers to steal GitHub authentication tokens by tricking users into clicking a ...
VS Code 1.122 removes the GitHub sign-in blocker for BYOK, making enterprise and offline AI workflows practical. BYOK now supports chat, tools and MCP servers while signed out. The release also ...
Google AI Studio lets users test Gemini models, build apps, generate media, and export code. Here’s what it does, costs, and where it falls short. For years, building software meant setting up local ...
CMSIS-DebugMCP is an MCP server that lets an AI agent drive the VS Code debugger against Arm Cortex-M targets through the CMSIS Debugger extension — setting breakpoints, stepping, reading memory and ...
GitHub has confirmed that a recent breach into its internal repositories was caused by a vulnerability in a Microsoft Visual Studio Code (VS Code) extension called ‘Nx Console.’ The security team at ...
VS Code 1.121 was released May 20, 2026, featuring yet another update to Claude Code, becoming more and more a first-class citizen in the VS Code ecosystem. Remote agents can run over SSH or dev ...
Preview of new companion app allows developers to run multiple agent sessions in parallel across multiple repos and iterate on human and agent reviews. Visual Studio Code 1.115, the latest release of ...
A large-scale campaign is targeting developers on GitHub with fake Visual Studio Code (VS Code) security alerts posted in the Discussions section of various projects, to trick users into downloading ...
VS Code Extensions have transformed the code editor into a productivity powerhouse. GitHub Copilot enables AI-powered autocomplete, multi-line code generation, and context-aware suggestions, helping ...
Researchers say they’ve discovered a supply-chain attack flooding repositories with malicious packages that contain invisible code, a technique that’s flummoxing traditional defenses designed to ...