Microsoft has had a VS Code extension for a long time, and it finally came back to bite them.

Claude Code plugins now have an official Anthropic-managed directory at github.com/anthropics/claude-plugins-official, consolidating 30-plus internal and 15 vetted external Claude Code extensions behi ...

GitHub hack exposed 3,800 internal repos through a poisoned VS Code extension, raising new concerns over developer supply ...

GitHub has said it found about 3,800 internal repositories accessed in the breach and stressed that these contained its own code rather than customer projects. The ...

Sometime in early 2025, an attacker slipped malicious code into a Visual Studio Code extension, and a GitHub employee ...

GitHub CISO Alexis Wales confirmed Thursday that a poisoned build of the Nx Console Visual Studio Code extension — live on ...

Google's Android CLI 1.0 lets AI coding agents build apps directly via terminal, slashing token use by 70% and boosting speed ...

GitHub confirms breach of 3,800 internal repos after employee installs poisoned VS Code extension - SiliconANGLE ...

GitHub says the hackers who breached 3,800 internal repositories gained access via a malicious version of the Nx Console VS ...

A reported software supply chain attack involving a malicious Visual Studio Code extension has exposed the growing security ...

TeamPCP exfiltrated 3,800 internal GitHub repositories after poisoning a VS Code extension. No customer data was affected, the company says.

GitHub disclosed that attackers used a malicious Visual Studio Code extension on an employee's laptop to exfiltrate roughly 3 ...