Cybernews

North Korea is turning open-source projects into malware traps

North Korea is doubling down on a familiar playbook by weaponizing trust in open-source software and developer workflows. The ...
Techzine Europe

Misuse of VS Code tasks poses risk to developers

Security researchers are increasingly citing Visual Studio Code as part of supply chain attacks on developers. Researchers at Jamf recently identified ...
GitHub

enhancedjs/html-in-template-string-vscode

Notice: This is a fork of vscode-lit-html, the purpose is to support HTML for template engines like Vue, Handledom or just plain text HTML.
GitHub

djlint-vscode

If you have the Python extension installed, djlint-vscode will use the djLint installed in the currently activated Python environment, unless you have the djlint.useVenv extension setting disabled.
Bleeping Computer

Malicious VSCode Marketplace extensions hid trojan in fake PNG file

A stealthy campaign with 19 extensions on the VSCode Marketplace has been active since February, targeting developers with malware hidden inside dependency folders. The malicious activity was ...