GlassWorm malware hits 400+ code repos on GitHub, npm, VSCode, OpenVSX

The GlassWorm supply-chain campaign has returned with a new, coordinated attack that targeted hundreds of packages, ...
InfoWorld

Open VSX extensions hijacked: GlassWorm malware spreads via dependency abuse

Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace ...
GitHub

The Official IDL Extension for Visual Studio Code

First version of a web extension allowing you to view IDL code and notebooks directly in the browser — lightweight for now, but a step toward full desktop/browser parity See the changelog for full ...