2026-05-05 15:20:04
Looks like this got rolled back, but… if you use VSCode for source control… Microsoft has a new chore for you. (check your commits, I guess? this is bonkers.)
https://github.com/microsoft/vscode/pull/310226
Looks like this got rolled back, but… if you use VSCode for source control… Microsoft has a new chore for you. (check your commits, I guess? this is bonkers.)
https://github.com/microsoft/vscode/pull/310226
#Steady #Klimacrew
#VibeCoding mit KI-Programmierhilfen in Visual Studio Code ausprobiert.
Ich habe zwei KI-Assistenten für die direkte Integration in VSCode getestet, ob sie meine Erwar…
Another researcher skipped coordinated disclosure entirely and dropped a critical 1-click GitHub token theft in public because he doesn't want to deal with MSRC. In his own words: "I really don't want to deal with MSRC on VSCode bugs."
The bug: just clicking a link can hand an attacker a GitHub token that reads AND writes to all your repos, including private ones. It lives in github[.]dev, GitHub's browser-based VSCode editor, which passes the browser an OAuth tok…
Timeō Microsoftōs et dōna ferentēs
Aenid, Publius Vergilius Maro, 19 BC colorised
via @…
https://floss.social/@hywan/116509265759021346
The official #Swift VSCode plugin is now available in OpenVSX, and that means that it might be time for me to try VSCodium again… 🤞
https://open-vsx.org/extension/swiftlang/swift-vscode
GitHub confirms breach of 3,800 repos via malicious VSCode extension
https://www.bleepingcomputer.com/news/security/github-confirms-breach-of-3-800-repos-via-malicious-vscode-extension/
>be me
>go to Linux user's group
>someone mentions Emacs
>I mention I switched back from VSCode to Emacs to avoid AI
>like 3 people bring up their AI coding setups
mfw
GitHub has confirmed that around 3,800 internal repositories were breached after one of its employees installed a malicious VS Code extension: https://www.bleepingcomputer.com/news/security/github-confirms-breach-of-3-800-repos-v…
GitHub confirms breach of ~3,800 repositories after one of its employees installed a malicious VS Code extension; TeamPCP claimed responsibility for the hack (Sergiu Gatlan/BleepingComputer)
https://www.bleepingcomputer.com/news/secu
Of course both are built on #11ty - and I now have a scaffold to build out 11ty sites using 1 prompt in CC inside VSCode - took a bit of tweaking to get it to build it how I wanted - installs the latest 11ty build and the dependencies I usually use as well as templates and placeholder files and, probably most importantly a claud.md file with instructions on how to proceed.