Malicious VSCode extensions on Microsoft's registry drop infostealers

Two malicious extensions on Microsoft's Visual Studio Code Marketplace infect developers' machines with information-stealing ...
Visual Studio Magazine

Listen Up: VS Code Insiders Gets a Podcast

Microsoft has launched the VS Code Insiders Podcast, a new behind-the-scenes audio show that digs into experimental features, the people building them and what may be coming next to Visual Studio Code ...
Visual Studio Magazine

Threat Actors Keep Weaponizing VS Code Extensions

Threat actors are still abusing Visual Studio Code extensions as an entry point, with the latest fake Prettier incident ...

Cursor Version 2 Slashes Task Time with Multiple AI Agents in the IDE

Run eight agents in isolated work trees inside Cursor 2, so you finish complex changes sooner while avoiding messy merge ...
InfoWorld

All I want for Christmas is a server-side JavaScript framework

Could 2026 be the year of the beautiful back end? We explore the range of options for server-side JavaScript development, ...

Critical React, Next.js flaw lets hackers execute code on servers

A maximum severity vulnerability, dubbed 'React2Shell', in the React Server Components (RSC) 'Flight' protocol allows remote code execution without authentication in React and Next.js applications.