SecurityWeek

VS Code Configs Expose GitHub Codespaces to Attacks

Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.
InfoWorld

GitHub eyes restrictions on pull requests to rein in AI-based code deluge on maintainers

GitHub is weighing tighter pull request controls and AI-based filters after maintainers warned that a surge of low-quality, ...