Cybernews

North Korea is turning open-source projects into malware traps

North Korea is doubling down on a familiar playbook by weaponizing trust in open-source software and developer workflows. The ...

Malicious AI extensions on VSCode Marketplace steal developer data

Marketplace that were collectively installed 1.5 million times, exfiltrate developer data to China-based servers.
The Hacker News

⚡ Weekly Recap: Firewall Flaws, AI-Built Malware, Browser Traps, Critical CVEs & More

Weekly cybersecurity recap covering emerging threats, fast-moving attacks, critical flaws, and key security developments you ...
GitHub

Cisco device configuration Syntax Highlighting for Visual Studio Code.

This is a Fork of Y-Ysss/vscode-cisco-config-highlight. No credit is taken from the original work. Implemented changes from the main repository of this extension are intended to improve on it and the ...
GitHub

Feature Request: Validate Personal Access Tokens at Configuration Time for MCP Servers

When adding an MCP server (for example, a GitHub MCP server) in VS Code, users are prompted to enter a Personal Access Token (PAT). Currently, the token is accepted without validation at this step. If ...