Four serious new vulnerabilities affect Microsoft Visual Studio Code, Cursor and Windsurf extensions, three of which remain ...

Critical vulnerabilities in four widely used VS Code extensions could enable file theft and remote code execution across 125M installs.

Three of the four vulnerabilities remained unpatched months after OX Security reported them to the maintainers.

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...

OpenAI has recently published a detailed architecture description of the Codex App Server, a bidirectional protocol that decouples the Codex coding agent's core logic from its various client surfaces.

One of the latest CLI tools works with the Windows App SDK, simplifying the process of creating, building, and publishing Windows applications without using Visual Studio and encompassing most ...

Two months after .NET 10.0, Microsoft starts preview series for version 11, primarily with innovations in the web frontend ...

North Korean IT operatives use stolen LinkedIn accounts, fake hiring flows, and malware to secure remote jobs, steal data, ...

VS Code forks are diverging rapidly, not just in features, but in how they structure AI-assisted development workflows. Cursor emphasizes speed and visual polish, Windsurf leans toward dynamic ...

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...