Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
SharePains by Pieter Veenstra on MSN

Migrate SharePoint site designs and scripts to a new tenant

I was asked recently to migrate SharePoint site designs and site scripts to a new tenant. In this post all the steps including exporting the site designs and site scripts before importing them. All ...
Infosecurity Magazine

Flaws in Popular Software Development App Extensions Allow Data Exfiltration

Four serious new vulnerabilities affect Microsoft Visual Studio Code, Cursor and Windsurf extensions, three of which remain ...

VS Code: Python Environments Extension generally available

The new extension for Visual Studio Code aims to end the previous fragmentation and ensure a uniform workflow with Python environments.

Flaws in popular VSCode extensions expose developers to attacks

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...
How-To Geek on MSN

How I built the perfect programming platform in under 10 minutes

Building your perfect programming environment is easier than you think. Here's how to do it in minutes!

Microsoft starts with previews for .NET 11.0

Two months after .NET 10.0, Microsoft starts preview series for version 11, primarily with innovations in the web frontend ...
The Hacker News

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Cybersecurity researchers have discovered two malicious Microsoft Visual Studio Code (VS Code) extensions that are advertised as artificial intelligence (AI)-powered coding assistants, but also harbor ...
InfoWorld

Visual Studio Code adds agent development extension

The Copilot Studio extension lets developers use any VS Code-compatible AI assistant to develop AI agents, then sync with Copilot Studio for testing and iteration. Microsoft is offering a Microsoft ...
InfoWorld

Visual Studio Code adds multi-agent orchestration

With Visual Studio Code 1.107, developers can use GitHub Copilot and custom agents together and delegate work across local, background, and cloud agents. Just-released Visual Studio Code 1.107, the ...
Infosecurity-magazine.com

Malware Discovered in 19 Visual Studio Code Extensions

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...
GitHub

Visual Studio Code STAC Validator

This extension automatically validates your STAC JSON files against their corresponding JSON schemas. When you open a STAC file (Item, Collection, or Catalog), the extension: Detects the STAC type and ...