Microsoftは2026年6月3日、Visual Studio Code （VS Code） 1.

The web version of the VS Code editor on GitHub.dev had a security vulnerability that allowed attackers to take over all of a ...

The agent is doing the actual work, and VS Code is just a window.

GitHubのブラウザ版開発環境「github.dev」で、細工されたリンクをクリックするだけでGitHubの認証トークンが盗まれる可能性があった脆弱(ぜいじゃく)性が報告されました。

A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.

D Yet another aggrieved bug hunter has leaked a vulnerability affecting a Microsoft product after becoming disillusioned with ...

VS Code flaw exposes GitHub OAuth tokens via one-click attack on GitHub.dev, enabling private repo access and token theft.

Your Monday cybersecurity recap covers the latest digital threats, exposed weaknesses, active attacks, and security stories ...