GlassWorm malware returns on OpenVSX with 3 new VSCode extensions

The GlassWorm malware campaign, which impacted the OpenVSX and Visual Studio Code marketplaces last month, has returned with ...
GitHub

javascript auto-completion does not respect the user configured formatting options

If I cut the results of auto completion from step 2 (or 3) and paste them back; or if I trigger editor.action.formatDocument (ctrl+shift+i) in the editor, both the indentations and the semicolons are ...
CSO Online

Rogue MCP servers can take over Cursor’s built-in browser

A new proof-of-concept attack shows that malicious Model Context Protocol servers can inject JavaScript into Cursor’s browser ...