GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK

GitHub confirmed attackers stole 3,800 internal repositories via a poisoned VS Code extension. The same threat group, TeamPCP, simultaneously compromised Microsoft's durabletask Python ...
adtmag.com

Microsoft's Python Environment Tool Finally Tackles Developers' Biggest Headache

Ask any Python developer about their least favorite part of the job, and environment management will top the list. The endless juggling of virtual environments, dependency conflicts, and version ...
Hosted on MSN

A poisoned VS Code extension led to a GitHub breach, and Microsoft owns every link in the chain

Visual Studio Code (or one of its many forks) is used by a huge number of developers, and the thing that makes it worth using isn't really the editor at all. It's the extensions which make it ...