Hackers can bypass npm’s Shai-Hulud defenses via Git dependencies

Koi security researchers found that when NPM installs a dependency from a Git repository, configuration files such as a ...
GitHub

vscode-debug-value-editor

Start a JS debug session Click on the code lens to view and edit the runtime value of the property. This can be done while the debug session is paused or running. When the debug session is running, ...

Learn OpenCode Fast to Run AI Tasks in Parallel

Set up OpenCode on desktop, web, or terminal and add Context 7 MCP for instant API docs, helping you code with fewer ...

Malicious AI extensions on VSCode Marketplace steal developer data

Marketplace that were collectively installed 1.5 million times, exfiltrate developer data to China-based servers.