The Hacker News

Researchers Find Malicious VS Code, Go, npm, and Rust Packages Stealing Developer Data

Researchers found malicious VS Code extensions and Go, npm, and Rust packages stealing developer data via hidden payloads and exfiltration.
Visual Studio Magazine

GitHub Ships Early December Copilot Updates Across Spaces, Visual Studio and Model Options

GitHub changelog posts detail new Copilot Spaces sharing features, a Visual Studio Copilot update, and public preview access to OpenAI's GPT-5.1-Codex-Max model.

Malicious VSCode extensions on Microsoft's registry drop infostealers

Two malicious extensions on Microsoft's Visual Studio Code Marketplace infect developers' machines with information-stealing ...
Visual Studio Magazine

Threat Actors Keep Weaponizing VS Code Extensions

Threat actors are still abusing Visual Studio Code extensions as an entry point, with the latest fake Prettier incident ...
GitHub

[Bug/Enhancement] No highlight when selecting snippet placeholder

When using the Dracula theme in VS Code, snippet placeholders (e.g. $1) can be filled normally. However, when selecting the inserted text with Shift + ←/→, the selected part has no visual distinction ...