Bleeping Computer

GitHub confirms breach of 3,800 repos via malicious VSCode extension

Update May 21: GitHub has now linked this breach to the TanStack npm supply-chain attack and says the employee installed a malicious version of the Nx Console extension. GitHub has confirmed that ...

GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK

GitHub confirmed attackers stole 3,800 internal repositories via a poisoned VS Code extension. The same threat group, TeamPCP, simultaneously compromised Microsoft's durabletask Python ...
GitHub

Danny2097/WTE_Tutorials_VSCode_Extension

MIT License Copyright (c) 2026 dan Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files ...
GitHub

Mypy extension for VS Code

Runs mypy on Python code to provide type checking. Runs on your entire workspace. (This is different from Microsoft's Python extension's mypy functionality which only lints each file separately, ...