The Hacker News

CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution

A flaw in the binary-parser npm package before version 2.3.0 lets attackers execute arbitrary JavaScript via unsanitized parser input.
CSO Online

Contagious Interview turns VS Code into an attack vector

Threat actors behind the campaign are abusing Microsoft Visual Studio Code’s trusted workflows to execute and persist ...
SecurityWeek

North Korean Hackers Target macOS Developers via Malicious VS Code Projects

North Korean hackers target macOS developers with malware hidden in Visual Studio Code task configuration files.
InfoWorld

TypeScript levels up with type stripping

Say goodbye to source maps and compilation delays. By treating types as whitespace, modern runtimes are unlocking a “no-build” TypeScript that keeps stack traces accurate and workflows clean.

This week in AI updates: GitHub Copilot SDK, Claude’s new constitution, and more (January 23, 2026)This week in AI updates: GitHub Copilot SDK, Claude’s new constit…

GitHub Copilot SDK allows developers to embed agentic capabilities into applications using GitHub Copilot CLI's execution ...

‘America Behind Unrest’: Tehran Blames Washington for Iran Protests, Slams Western Media Reports

Iran’s foreign ministry has blamed Washington for rising tensions following weeks of nationwide protests triggered by ...
NPR

Code Switch

What's CODE SWITCH? It's the fearless conversations about race that you've been waiting for. Hosted by journalists of color, our podcast tackles the subject of race with empathy and humor. We explore ...