SecurityWeek

Open VSX Publisher Account Hijacked in Fresh GlassWorm Attack

A compromised Open VSX publisher account was used to distribute malicious extensions in a new GlassWorm supply chain attack.

I tried a Claude Code alternative that's local, open source, and completely free - how it works

I was curious if Block's Goose agent, paired with Ollama and the Qwen3-coder model, could really replace Claude Code. Here's how I got started.
The Hacker News

Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWorm

Open VSX supply chain attack hijacked VS Code extensions delivered GlassWorm malware stealing macOS, crypto, and developer ...
GitHub

oguzhandavran/pdf-word-merger

A professional WPF desktop application for merging PDF and Word documents with automatic sorting and sequential page numbering. pdf-word-merger/ ├── .gitignore # Git ignore file (allows .exe) ├── ...
Infosecurity-magazine.com

Malware Discovered in 19 Visual Studio Code Extensions

A campaign involving 19 Visual Studio (VS) Code extensions that embed malware inside their dependency folders has been uncovered by cybersecurity researchers. Active since February 2025 but identified ...
NJ.com

N.J. counties open warming centers as Code Blue alerts take effect

Severe cold weather gripping New Jersey has prompted counties to issue Code Blue alerts and open warming centers for residents who need emergency shelter. County and municipal governments activate ...
Windows Report

How to Install Visual Studio Code on Windows Step by Step

You start by getting the official installer from the Visual Studio Code website. Open your preferred browser on Windows. Go to the Visual Studio Code download page ...
Bleeping Computer

Glassworm malware returns in third wave of malicious VS Code packages

The Glassworm campaign, which first emerged on the OpenVSX and Microsoft Visual Studio marketplaces in October, is now in its third wave, with 24 new packages added on the two platforms. OpenVSX and ...
InfoQ

Google Brings Colab Integration to Visual Studio Code

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
Visual Studio Magazine

Microsoft Reaches Second Milestone in Open-Source AI Editing for VS Code

Microsoft reached a second milestone in its plan to make Visual Studio Code an open-source AI editor, continuing the transition it first outlined earlier this year. The latest update open sources the ...
winbuzzer.com

Microsoft Open-Sources GitHub Copilot Inline Code Suggestions in VS Code

Microsoft has taken a major step in its plan to make Visual Studio Code a fully open-source AI editor. On November 6, the company announced it has open-sourced the core inline suggestions for GitHub ...
CSOonline

Self-propagating worm found in marketplaces for Visual Studio Code extensions

Treat this as an immediate security incident, CISOs advised; researchers say it’s one of the most sophisticated supply chain attacks they’ve seen, and it’s spreading. A month after a self-propagating ...