VS Code 1.123 adds a two-hour delay before extensions auto-update to newer versions when automatic updates are enabled.

VS Code flaw exposes GitHub OAuth tokens via one-click attack on GitHub.dev, enabling private repo access and token theft.

It’s time to switch to a new development tool for SQL Server and Azure SQL. Here’s how to get started with the MSSQL extension for Visual Studio Code. Microsoft recently ended support for Azure Data ...

A researcher has disclosed details of a severe VS Code vulnerability that can be exploited to steal GitHub tokens and access ...

D Yet another aggrieved bug hunter has leaked a vulnerability affecting a Microsoft product after becoming disillusioned with ...

GitHub is investigating a cyberattack linked to a malicious VS Code extension after hackers allegedly accessed thousands of internal repositories and attempted to sell the data online.

Microsoft has released VS Code 1.122 with BYOK support without sign-in, mobile device emulation, and a new issue reporting ...

Microsoft released Visual Studio Code 1.123 on June 3, adding agent-focused features, larger model context support, integrated browser updates and a new delay for some automatic extension updates.

Microsoft's May 2026 VS Code update makes BYOK usable in restricted environments while adding agent, browser and issue-reporting updates.

GitHub has confirmed an attack via an extension for Visual Studio Code. The stolen data is apparently for sale on a cybercrime forum.

Note: Requires Visual Studio Code 1.78.0 or later, and Java 21 or later. This page provides an overview of Liberty Tools for Visual Studio Code. For minimum requirements information and detailed ...

Microsoft has had a VS Code extension for a long time, and it finally came back to bite them.