Three of the four vulnerabilities remained unpatched months after OX Security reported them to the maintainers.

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...

A proof of concept shows how multi-agent orchestration in Visual Studio Code 1.109 can turn a fragile, one-pass AI workflow into a more reliable, auditable process by breaking long tasks into smaller, ...

The January 2026 update to VS Code (v1.109) transforms the editor into a multi-agent orchestration hub, allowing developers to automate complex, rule-based editorial workflows with proactive context ...

Why Tiny Downloads Matter Again Modern web games can be massive, but the fastest experiences still start with a small ...

First malicious Outlook add-in abused an abandoned domain to host a fake Microsoft login page, stealing 4,000+ credentials in a supply chain attack.

A technical preview promises to take on the unrewarding work in DevOps, but questions remain about controls over costs and access.

I don’t use a massive IDE. These three lightweight tools handle writing, version control, and validation on every HTML ...

Microsoft has patched six exploited zero-days in February 2026 Patch Tuesday, addressing 58 vulnerabilities and triggering urgent enterprise remediation.

Four serious new vulnerabilities affect Microsoft Visual Studio Code, Cursor and Windsurf extensions, three of which remain ...

Visual Studio Code 1.109 has been released, primarily bringing new features for handling AI agents. Developers can now follow the response generation of Anthropic Claude models in real-time in the ...