Visual Studio Magazine

VS Code 1.121 Adds Remote Agents, Boosts Claude Code Functionality Again

Visual Studio Code 1.121 focuses on agent workflows, model configuration, terminal behavior and built-in preview features -- and features another update to Claude Code functionality.

Protect your enterprise now from the Shai-Hulud worm and npm vulnerability in 6 actionable steps

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...

Claude Code, Copilot and Codex all got hacked. Every attacker went for the credential, not the model.

Six teams exploited Claude Code, Copilot, Codex, and Vertex AI in nine months. Every attack hit runtime credentials that IAM ...

Shadow APIs: How Chinese developers bypass restrictions to access Claude and Gemini

One high-volume seller on Xianyu advertises 'low-latency, no-VPN' access to the full Claude 3.5 suite In China, a grey market ...

How Chinese Coders Are Secretly Using Claude And Gemini Despite Ban

Despite the unavailability of AI models like Anthropic's Claude and Google's Gemini in China, local developers are accessing ...
Morning Overview on MSN

The 'mini Shai-Hulud' attack hides inside AI coding agent configs — the first supply chain attack to weaponize Claude Code and VS Code as persistence vectors

On April 29, 2026, someone slipped malicious code into four widely used SAP software packages. Within days, the infection had ...
NewsBytes

How Chinese developers are getting access to foreign AI models

Chinese developers leverage grey market API relay platforms to bypass restrictions, enabling access to overseas AI models ...
CIO

19 vibe coding tools for democratizing app development

Vibe coding is legit enough that enterprises need to start experimenting. Finding the right tool for your users and use cases is the first step.
Memeburn

China's Claude API Grey Market Sells AI Access at 90% Off — and Your Data Pays the Rest

China's Claude API grey market sells AI access at up to 90% off in 2026 — but your prompts, passwords, and private data may ...
Cryptopolitan on MSN

Mistral AI and TanStack hit in supply chain attack with SLSA-attested malware

Attackers compromised the official Mistral AI Python package on PyPI along with hundreds of other widely-used developer packages, exposing GitHub tokens, cloud credentials, and password vaults across ...
The Information

How Microsoft, Meta, xAI Get AI Training Data From Their Employees

Microsoft’s GitHub Copilot may have lost much of its early lead in the AI coding race to rivals like Anthropic and Cursor, ...
XDA Developers on MSN

I automated my entire dev startup with one VS Code shortcut, and the terminal became optional

The commands didn't go anywhere. I did.