The Hacker News

One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens

VS Code flaw exposes GitHub OAuth tokens via one-click attack on GitHub.dev, enabling private repo access and token theft.

GitHub just switched Copilot to metered billing, and developers are watching months of credits vanish in a single day

Back in April, the company said it would move all Copilot plans to a usage-based system that bills users based on actual AI ...
Windows Report

Microsoft Launches GitHub Copilot Desktop App for Agent-Native Development

GitHub launches a new Copilot desktop app with AI agents, code review upgrades, sandboxes, and automation tools for ...

Inside GitHub’s AI coding push with COO Kyle Daigle

CNBC's Kate Rooney sits down with Github COO Kyle Daigle at Microsoft Build to discuss new custom AI coding model and the ...

GitHub Copilot users get a rude awakening as new AI pricing goes into effect

GitHub Copilot's internal estimator suggests some users could pay hundreds more under a usage-based AI pricing model that ...
Tech Times

GitHub Copilot Replaces GPT-4 With Project Polaris, Ships Multi-Agent VS Code at Build

GitHub Copilot multi-agent support for VS Code launched at Microsoft Build 2026 alongside Project Polaris, an in-house AI ...
Windows Report

New VS Code Zero-Day Lets Attackers Access Private GitHub Repositories

A security researcher has publicly disclosed a new Visual Studio Code zero-day vulnerability that can reportedly let ...

Microsoft Ends Claude Code Licenses As It Shifts Developers To Copilot

Microsoft ends Claude Code licenses and shifts developers to its in‑house Copilot model, signaling a strategic move toward AI ...

Microsoft turns its back on Claude Code, asks employees to use GitHub Copilot instead: Report

Microsoft has instructed its employees to stop using Claude Code and instead transition to GitHub Copilot. The company had ...

GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK

GitHub confirmed attackers stole 3,800 internal repositories via a poisoned VS Code extension. The same threat group, TeamPCP ...

Microsoft and Google are late to AI coding, but 'absolutely critical' they compete for growth

Coding tools are becoming an increasingly big target for Google and Microsoft as they try to catch up to Anthropic and OpenAI ...