Visual Studio Magazine

Open VSX 1.0.0 Puts Focus on Open Extension Registry for VS Code Ecosystem

Eclipse Open VSX has reached 1.0.0, highlighting its role as a vendor-neutral registry for VS Code-compatible extensions.
SecurityWeek

Amazon Q Flaw Enabled Cloud Credential Theft via Malicious Repositories

Amazon Q vulnerability could allow attackers to steal developer cloud credentials by luring them into opening a booby-trapped ...
The Hacker News

Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs

A high-severity flaw in Amazon Q Developer let a malicious repository run commands and steal a developer's cloud credentials. The path was short: a developer opens the repo, trusts the workspace, and ...
InfoWorld

Using Visual Studio Code’s ‘air-gapped’ AI model mode

VS Code can use LLM models other than GitHub Copilot’s built-in providers for AI-assisted development, including local and ...
Windows Report

Visual Studio Code Adds AI Chat Cost Tracking and Multi-Chat Copilot Sessions

Visual Studio Code 1.126 adds AI chat cost tracking, multiple Copilot chats in one session, and a safer Restricted Mode for ...

Microsoft updates Visual Studio Code with chat cost tracking and multi-agent chats

Free AI in IDEs is shifting to paid models. The latest VS Code update brings transparent cost tracking and multi-chat ...
Tom's Hardware on MSN

AI coding agents can be tricked into installing malware via 'clean' GitHub repositories

Three levels of indirection, all with seemingly innocuous steps, will catch a bot off-guard.
The Scientist

The Scientist - Home

Leaders at EBRAINS, a collection of tools and data resources for basic neuroscience research, are finalizing the platform’s 10-year plan amid calls to improve its usability.