The Hacker News

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers

GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain attacks on developers.

GitHub Copilot unlocks OpenAI's GPT-5.4 in VSCode and more

GitHub Copilot has added OpenAI’s GPT-5.4 coding model, bringing improvements to reasoning and multi step development tasks.