What’s on your mind..?
GitHub has confirmed a serious internal security incident involving around 3,800 of its own code repositories. According to the company, the breach began after an employee's device was compromised through a malicious Visual Studio Code extension, allowing attackers to steal credentials and gain access to internal GitHub repositories.
The story of PocketOS is the kind of incident that makes many developers, business owners, and IT teams sit up immediately. According to the company's founder, Jeremy Crane, an AI coding agent managed to delete the firm's production database and its backups in just nine seconds. For a software company that supports car rental businesses, that was not just a technical inconvenience. It immediately became an operational crisis.
A lot of the software people use every day rests on open-source code maintained by small teams, and sometimes by just one or two people doing the work in their spare time. These maintainers are expected to review pull requests, sort through bug reports, keep releases moving, update documentation, and respond to security issues, often without the kind of resources that commercial software teams take for granted.
If you use Visual Studio Code daily (or you manage developer machines in an organisation), this isn't the kind of advisory to brush off as "just another extension issue." Security researchers have flagged multiple vulnerabilities across widely used VS Code extensions, and the combined install base is enormous. When flaws show up in tools that sit inside your editor, the risk isn't just theoretical, because extensions often have access to your workspace files, local environment, tokens, and internal resources.
For years, the systems-programming world has been stuck in a familiar tug-of-war. C and C++ still power huge parts of the modern stack, but their long-running weakness is also well-known: memory safety bugs that keep showing up in real-world incidents. At the same time, newer options like Rust and Go have proven you can build fast software without inheriting quite so many sharp edges.
Step into a world where web design & development, gaming & retro gaming, and guitar covers & shredding collide! Whether you're looking for expert web development insights, nostalgic arcade action, or electrifying guitar solos, this is the place for you. Now also featuring content on TikTok, we’re bringing creativity, music, and tech straight to your screen. Subscribe and join the ride—because the future is bold, fun, and full of possibilities!
