New GitHub Zero-Day Exposed Developer Tokens to Attackers

A github.dev flaw could let attackers steal GitHub OAuth tokens through a one-click attack, exposing private repositories and ...
Visual Studio Magazine

Hands On with New Experimental GitHub Copilot 'Agent Skills' in VS Code

Visual Studio Code 1.108 adds experimental Agent Skills, allowing GitHub Copilot to load custom instructions, scripts, and resources for specialized tasks. Agent Skills are defined in a simple folder ...
Visual Studio Magazine

Copilot Compared: Advanced AI Features in Visual Studio 2022 vs. VS Code

GitHub Copilot continues to evolve in both Visual Studio and Visual Studio Code, offering developers increasingly intelligent, context-aware tools that go far beyond basic autocomplete. The latest ...
Tech Times

VS Code Agents Hit Stable: Air-Gapped BYOK Unlocks Enterprise AI Coding

VS Code agents are now in Stable preview, and the 1.122 update removed the GitHub OAuth requirement from BYOK, letting defense, healthcare, and finance developers run fully air-gapped AI-assisted ...
CSO Online

Hole in GitHub’s browser-based VSCode editor could lead to stolen token

Its disclosure raises questions about what security researchers should expect from vendors, and how far in advance of its ...
The Next Web

One click on GitHub.dev is all it takes to hand over your private repositories

A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.