InfoWorld

New ‘StoatWaffle’ malware auto‑executes attacks on developers

The newly observed malware abuses VS Code’s “runOn:folderOpen” feature to execute automatically from trusted projects, ...
The Hacker News

North Korean Hackers Abuse VS Code Auto-Run Tasks to Deploy StoatWaffle Malware

North Korean hackers exploit VS Code tasks.json auto-run since Dec 2025 to deploy StoatWaffle malware, stealing data and ...
InfoWorld

VS Code now updates weekly

Agents, browser debugging, and deprecation of Edit Mode are all highlighted in the latest versions of the popular code editor ...

Fake VS Code alerts on GitHub spread malware to developers

A large-scale campaign is targeting developers on GitHub with fake Visual Studio Code (VS Code) security alerts posted in the ...

OpenAI introduces plugins for its Codex programming assistant

According to OpenAI, a future update will introduce the ability to equip plugins with other types of components besides MCP integrations and skills. Anthropic’s Claude Code enables developers to ...
Visual Studio Magazine

VS Code 1.113 Bundles Agent, Chat and Editor Tweaks as Dev Team Settles into Weekly Releases

Microsoft's VS Code 1.113 release packages a range of smaller updates across agent experience, chat experience, and editor experience, arriving as the company shifts the editor to a weekly release ...