SecurityWeek

GitHub Issues Abused in Copilot Attack Leading to Repository Takeover

Orca has discovered a supply chain attack that abuses GitHub Issue to take over Copilot when launching a Codespace from that ...
The Hacker News

RoguePilot Flaw in GitHub Codespaces Enabled Copilot to Leak GITHUB_TOKEN

RoguePilot flaw let GitHub Copilot leak GITHUB_TOKEN, while new studies expose LLM side channels, ShadowLogic backdoors, and promptware risks.
InfoWorld

Microsoft brings C++ smarts to GitHub Copilot in Visual Studio Code

Updates to GitHub Copilot in VS Code provide the same C++ symbol context and CMake build configuration awareness as Microsoft’s C/C++ DevTools and CMake Tools extensions.
Visual Studio Magazine

Comparing Amazon Q and GitHub Copilot Agentic AI in VS Code

This head-to-head test compared Amazon Q Developer and GitHub Copilot Pro using a real-world editorial workflow to evaluate their performance as 'agentic' assistants beyond simple coding. Both tools ...

Inside OpenAI’s fast-growing Codex: The people building the AI that codes alongside you

Insiders reveal how OpenAI’s rapidly growing coding agent works, why developers are delegating tasks to it, and what it means ...
Visual Studio Magazine

VS Code v1.110 Insiders: AI Agents Gain Native Browser Access and Global Instructions

The VS Code 1.110 cycle is putting more 'hands-on' capabilities into chat, led by native browser integration that lets AI agents interact with page elements, capture screenshots, and pull real-time ...
Microsoft

Developer-targeting campaign using malicious Next.js repositories

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...
InfoWorld

Google adds AI agent to Opal mini-app builder

New agent step in Opal figures out the right tools and models it needs to accomplish the user’s objective, Google said.