Critical vulnerabilities in four widely used VS Code extensions could enable file theft and remote code execution across 125M installs.

Three of the four vulnerabilities remained unpatched months after OX Security reported them to the maintainers.

The Conductor extension now can generate post-implementation code quality and compliance reports based on developer specifications.

The abrupt withdrawal of Microsoft's co-founder dealt a fresh blow to a flagship event already marred by organisational lapses.