SecurityWeek

VS Code Configs Expose GitHub Codespaces to Attacks

Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.

n8n security woes roll on as new critical flaws bypass December fix

Patch meant to close a severe expression bug fails to stop attackers with workflow access Multiple newly disclosed bugs in the popular workflow automation tool n8n could allow attackers to hijack ...
Visual Studio Magazine

VS Code Team Member Blames User Trust Decisions in Repo-Based Attacks

In a a robust Hacker News thread sparked by Jamf Threat Labs research, a VS Code team member defended the editor's Workspace ...
SecurityWeek

Open VSX Publisher Account Hijacked in Fresh GlassWorm Attack

A compromised Open VSX publisher account was used to distribute malicious extensions in a new GlassWorm supply chain attack.

We Used Apple’s Creator Studio To Make A Music Video From Scratch In 30 Minutes

Using Final Cut Pro, Logic Pro and Pixelmator Pro — part of the Creator Studio — we were able to make an admittedly cheesy video.

VS Code is gobbling up storage space on Ubuntu, but there's a fix

VS Code's official Snap package on Linux has a bug first reported in 2024 that still hasn't been fixed and is gobbling up ...
Visual Studio Magazine

Beyond the Magic Word: Testing VS Code 1.109's New Agentic AI Workspace Priming

The January 2026 update to VS Code (v1.109) transforms the editor into a multi-agent orchestration hub, allowing developers to automate complex, rule-based editorial workflows with proactive context ...