SecurityWeek

VS Code Configs Expose GitHub Codespaces to Attacks

Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.
Visual Studio Magazine

VS Code Team Member Blames User Trust Decisions in Repo-Based Attacks

In a a robust Hacker News thread sparked by Jamf Threat Labs research, a VS Code team member defended the editor's Workspace ...
GitHub

cedric05/vscode-pin-folders

Install the "Pinned Folders" extension from the Visual Studio Code Extensions Marketplace. In the Side Explorer, locate the "Pinned Folders" section with a pin icon and click on it. In the top right ...
Cybernews

North Korea is turning open-source projects into malware traps

North Korea is doubling down on a familiar playbook by weaponizing trust in open-source software and developer workflows. The ...
GitHub

Visual Studio Code PDF Viewer

This extension runs the latest pdf.js underneath. A demo of their editor (hence ours) can be found here. Most extensions currently in the marketplace have problems too deep to fix. These problems ...