Meta’s Rust-powered linter and type checker for Python pairs blazing speed with advanced and innovative features.

For more than a year, a self-propagating worm rode VS Code extensions, npm packages, and stolen developer credentials through ...

GitHub confirmed attackers stole 3,800 internal repositories via a poisoned VS Code extension. The same threat group, TeamPCP, simultaneously compromised Microsoft's durabletask Python ...

Microsoft has had a VS Code extension for a long time, and it finally came back to bite them.

VS Code might be what you're used to, but there's a lot more to see when it comes to code editors. Here's a few options.

GlassWorm poisoned 300 GitHub repositories since 2025, enabling supply chain attacks against developers and organizations.

The GitHub hack shows how one poisoned VS Code extension gave attackers access to 3,800 internal repositories. If you rely on third-party developer tools, this breach is a warning to audit your ...

The Glassworm botnet is no more, thanks to coordinated efforts between CrowdStrike, Google, and the Shadowserver Foundation.

The Glassworm botnet, a global operation targeting software developers through the open-source supply chain, was disrupted ...

Developers using open-source tools face heightened supply-chain risk after the botnet lost all four of its command channels.