Flaws in popular VSCode extensions expose developers to attacks

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...
ADTmag

Bellsoft Survey Finds Java Teams Struggle to Square Container Debugging Tools with Security Goals

Container security incidents remain a routine problem for software teams, and many of the day-to-day choices developers make to keep Java services easy to build and troubleshoot can increase security ...
ADTmag

JHipster 9.0.0-beta.2 lands with Spring Boot 4 upgrades and a clear message for Java teams: it's Java 21 time

JHipster 9.0.0-beta.2 deprecates the first beta to fix generator stability issues while advancing the platform to Spring Boot 4.0.2 and a new baseline of Java 21 (plus updated WebSocket security and ...
Visual Studio Magazine

VS Code Team Member Blames User Trust Decisions in Repo-Based Attacks

In a a robust Hacker News thread sparked by Jamf Threat Labs research, a VS Code team member defended the editor's Workspace ...