Security researchers discovered malicious code repositories exploiting VS Code's tasks.json configuration file to execute harmful code automatically when folders are opened. The attack uses VS Code's legitimate auto-task feature, which runs despite trust warnings that users often bypass. The malicious code establishes backdoors
•4m read time• From devclass.com
Table of contents
LLVM project adopts "human in the loop" policy following AI-driven nuisance contributionsMicrosoft updates React Native for Windows. Developers ask, 'Why not use MAUI?'jQuery 4.0 released, first major version since 2016Vibe coded applications full of security blundersCode signing Windows apps may be easier and more secure with new Azure Artifact serviceOpen source MySQL repository has no commits in more than three monthsFly.io introduces Sprites: lightweight, persistent VMs to isolate agentic AITailwind Labs lays off 75 percent of its engineers thanks to 'brutal impact' of AIMicrosoft open sources XAML Studio amid developer discontent with Visual Studio designersRuby 4.0 released – but its best new features are not production readyDramatic drop in Stack Overflow questions as devs look elsewhere for helpDocker Hardened Images now free, devs give cautious welcomeSort: