VS Code 1.123 adds a two-hour delay before extensions auto-update to newer versions when automatic updates are enabled.

VS Code flaw exposes GitHub OAuth tokens via one-click attack on GitHub.dev, enabling private repo access and token theft.

It’s time to switch to a new development tool for SQL Server and Azure SQL. Here’s how to get started with the MSSQL extension for Visual Studio Code. Microsoft recently ended support for Azure Data ...

A researcher has disclosed details of a severe VS Code vulnerability that can be exploited to steal GitHub tokens and access ...

D Yet another aggrieved bug hunter has leaked a vulnerability affecting a Microsoft product after becoming disillusioned with ...

GitHub is investigating a cyberattack linked to a malicious VS Code extension after hackers allegedly accessed thousands of internal repositories and attempted to sell the data online.

Microsoft released Visual Studio Code 1.123 on June 3, adding agent-focused features, larger model context support, integrated browser updates and a new delay for some automatic extension updates.

Microsoft has released VS Code 1.122 with BYOK support without sign-in, mobile device emulation, and a new issue reporting ...

Microsoft's May 2026 VS Code update makes BYOK usable in restricted environments while adding agent, browser and issue-reporting updates.

GitHub has confirmed an attack via an extension for Visual Studio Code. The stolen data is apparently for sale on a cybercrime forum.

Microsoft has had a VS Code extension for a long time, and it finally came back to bite them.

Meta’s Rust-powered linter and type checker for Python pairs blazing speed with advanced and innovative features.