InfoWorld

Hole in GitHub’s browser-based VSCode editor could lead to stolen token

Its disclosure raises questions about what security researchers should expect from vendors, and how far in advance of its ...
The Hacker News

One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens

VS Code flaw exposes GitHub OAuth tokens via one-click attack on GitHub.dev, enabling private repo access and token theft.

Jurors find Rebecca Grossman, Scott Erickson negligent in Iskander boys’ deaths

Jurors have found Rebecca Grossman and former MLB pitcher Scott Erickson negligent in the 2020 Westlake Village crash that ...
The Next Web

One click on GitHub.dev is all it takes to hand over your private repositories

A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.
Visual Studio Magazine

VS Code 1.123 Adds Agent Session Sync, 1M Context Windows

Microsoft released Visual Studio Code 1.123 on June 3, adding agent-focused features, larger model context support, integrated browser updates and a new delay for some automatic extension updates.
GitHub

Lean 4 VS Code Extension

After installing this extension, a 'Welcome' page with a setup guide should open automatically. The setup guide provides platform-specific information on the following topics: Books and documentation ...
GitHub

macOS tool to easily identify and get rid of big, unused files and folders in seconds.

Automatic cleaners only know about a fixed set of cache folders, and the decisions they make are limited to what they were preprogrammed for. ApexDisk finds and surfaces everything else they skip: ...