Arabian Post

SAP developers face npm supply shock

Malicious code inserted into four SAP-related npm packages exposed developer workstations and automated build systems to credential theft, marking a sharp escalation in attacks against open-source ...
The Hacker News

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...
InfoWorld

13 new critical holes in JavaScript sandbox allow execution of arbitrary code

Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...

Critical vm2 sandbox bug lets attackers execute code on hosts

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...
Visual Studio Magazine

VS Code 1.119 Adds Agent Browser Sharing, OpenTelemetry Tracing

The new weekly update focuses on agent workflows, observability, trust controls, Markdown usability and engineering changes.
Visual Studio Magazine

Special Embrace? VS Code Adapts to Claude Code's Ecosystem

Reflecting a broader trend of Microsoft embracing Claude AI, recent VS Code updates show the company accommodating Claude Code beyond model selection, with support for Claude-specific instruction ...
Hosted on MSN

Supercharge your VS Code workflow in 2026

Visual Studio Code can be transformed from a capable editor into a powerhouse development environment with the right extensions, settings, and workflows. From AI coding assistants to containerized dev ...
XDA Developers on MSN

4 VS Code extensions I can't live without as a Claude Code user

I'm not a developer (yet), but my VS Code setup says otherwise.

Online archives of over 20 years of tech reporting | The Register

Dive into The Register's online archive of incisive tech news reporting, features, and analysis dating back to 1998 ...