The Hacker News

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Cybersecurity researchers have discovered two malicious Microsoft Visual Studio Code (VS Code) extensions that are advertised as artificial intelligence (AI)-powered coding assistants, but also harbor ...
Bleeping Computer

Self-spreading GlassWorm malware hits OpenVSX, VS Code registries

A new and ongoing supply-chain attack is targeting developers on the OpenVSX and Microsoft Visual Studio marketplaces with self-spreading malware called GlassWorm that has been installed an estimated ...
GitHub

uv downloads unstripped binaries

uv idownloads strip --strip-unnneeded-able binaries. > uv venv -p 3.14 test Using CPython 3.14.0rc3 Creating virtual environment at: test Activate with: source test/bin/activate.fish > source test/bin ...
GitHub

Authenticate argument ignored with explicit index

uv sync Using CPython 3.13.2 Creating virtual environment at: .venv × No solution found when resolving dependencies: ╰─ Because only lagrange<=3.0.1 is available and your project depends on ...