TechRadar

BeyondTrust RCE flaw lets hackers run code without logging in

BeyondTrust warns of critical RCE flaw CVE-2026-1731 in RS and PRA Vulnerability allows unauthenticated OS command execution, risking compromise and data exfiltration Patch released February 2, 2026; ...
CSOonline

Contagious Interview turns VS Code into an attack vector

Threat actors behind the campaign are abusing Microsoft Visual Studio Code’s trusted workflows to execute and persist malicious code. Threat actors behind the long-running Contagious Interview ...
Bleeping Computer

Microsoft Copilot Studio extension for VS Code now publicly available

Microsoft announced that the Copilot Studio extension for the Visual Studio Code (VS Code) integrated development environment is now available to all users. Developers can use it to build and manage ...
InfoWorld

Visual Studio Code adds support for agent skills

An experimental feature in VS Code 1.108, Agent Skills are folders of instructions, scripts, and resources that GitHub Copilot can load for specialized tasks. Visual Studio Code 1.108, the latest ...
VentureBeat

The creator of Claude Code just revealed his workflow, and developers are losing their minds

When the creator of the world's most advanced coding agent speaks, Silicon Valley doesn't just listen — it takes notes. "If you're not reading the Claude Code best practices straight from its creator, ...
Visual Studio Magazine

VS Code 1.107 (November 2025 Update) Expands Multi-Agent Orchestration, Model Management

The latest monthly update to Visual Studio Code, version 1.107 (the November 2025 release), continues Microsoft's focus on AI-assisted workflows with expanded multi-agent orchestration across local, ...
Infosecurity-magazine.com

Malware Discovered in 19 Visual Studio Code Extensions

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...
Dark Reading

GlassWorm Returns, Slices Back into VS Code Extensions

GlassWorm, a self-propagating malware targeting Visual Studio Code (VS Code) extensions on the Open VSX marketplace, have apparently continued despite statements that the threat had been contained.
PC World

Anthropic’s Claude AI can now code without a command line terminal

Anthropic recently launched Claude Code for the web and as an iOS preview, making it easier for developers to use the AI coding assistant without the need for a terminal or command line. Users can ...
The Verge

Microsoft favors Anthropic over OpenAI for Visual Studio Code

Visual Studio Code now has a new auto AI model selector that favors Claude 4 over GPT-5. Visual Studio Code now has a new auto AI model selector that favors Claude 4 over GPT-5. is a senior editor and ...
GitHub

A large number of test output events cause hangs in the VS Code UI

I had an issue reported against the Dart extension at Dart-Code/Dart-Code#5690 that the built-in terminal was very slow during test runs. It seemed to be related to a large amount of logging output ...