InfoWorld

Open VSX extensions hijacked: GlassWorm malware spreads via dependency abuse

Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace ...
The Hacker News

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers

GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain attacks on developers.
InfoWorld

Microsoft accelerates pace of VS Code development

Microsoft is speeding up the delivery of its Visual Studio Code updates. Since last summer, the company has been making ...
GitHub

The Official IDL Extension for Visual Studio Code

First version of a web extension allowing you to view IDL code and notebooks directly in the browser — lightweight for now, but a step toward full desktop/browser parity See the changelog for full ...
Visual Studio Magazine

Microsoft Launches Azure Skills Plugin to Give AI Coding Agents Real Azure Expertise

Microsoft's new Azure Skills Plugin bundles curated Azure skills, the Azure MCP Server, and the Foundry MCP Server into a single install that gives AI coding agents both the expertise and execution ...