Visual Studio Magazine

GitHub Copilot Adds New C++ Capabilities with MSVC Upgrades and Build Performance Improvements

Microsoft announced new GitHub Copilot features for C++ developers in Visual Studio, including MSVC upgrade guidance, build ...
CSO Online

Malicious packages in npm evade dependency detection through invisible URL links: Report

Researchers outline how the PhantomRaven campaign exploits hole in npm to enable software supply chain attacks.
TMCnet

SAS unveils turnkey, low-cost cloud analytics on Microsoft Azure

SAS Viya Workbench, a cloud-based coding environment purpose-built for data scientists and modelers to help them build models ...
SecurityWeek

Supply Chain Attack Targets VS Code Extensions With ‘GlassWorm’ Malware

Visual Studio developers are targeted with a self-propagating worm in a sophisticated supply chain attack through the OpenVSX ...
CSO Online

Threat actors are spreading malicious extensions via VS marketplaces

There isn’t a consistent threat model for extension marketplaces yet, McCarthy said, making it difficult for any platform to ...