Visual Studio Code version 1.125 introduces the new chronicle command set for the Agent Host. This feature allows users to access session history insights directly through the chat interface. Available commands include options for standup summaries, search history, and cost-optimization tips for AI usage.

Source

Microsoft has temporarily disabled 73 of its GitHub repositories across organizations like Azure and MicrosoftDocs following a compromise by the self-replicating Miasma worm. The attack utilized compromised contributor credentials to inject malicious code into critical projects, including the Azure durabletask Python package. This incident represents a significant escalation in a broader supply chain campaign targeting the open-source ecosystem and developer environments.

Source

Visual Studio Code 1.123 introduces a session synchronization feature that allows AI coding histories to follow developers across different machines. By linking history to a GitHub account, the editor preserves conversation context, touched files, and repository metadata regardless of the local environment. This update transforms previous chat outputs into a searchable project memory that can be used to generate reports or surface productivity insights.

Source

Visual Studio Code version 1.124 introduces significant improvements to the Agents window for managing AI-driven interactions. The chat input history is now scoped specifically to the current session to prevent prompts from leaking across different contexts. This change ensures that using the arrow keys to navigate previous commands only surfaces relevant entries for the active task.

Source

The May update for GitHub Copilot in Visual Studio 2026 introduces a dedicated Plan agent designed to assist with pre-coding architecture. This tool analyzes the existing codebase to draft implementation strategies in markdown format before any actual code is written. Once the strategy is finalized, it can be handed off to the Agent mode for automated implementation.

Source

Visual Studio Code 1.123 introduces a new Research Agent accessible via the /research command for technical investigations. This tool functions as a read-only assistant that gathers information from local codebases, GitHub repositories, and the web to generate Markdown reports. It is designed to help users analyze unfamiliar APIs and large codebases without making direct changes to the code.

Source

A security researcher has publicly disclosed a zero-day vulnerability in Visual Studio Code that allows attackers to steal GitHub authentication tokens. The flaw targets github.dev, the browser-based version of the editor, by exploiting the sandboxed webview message-passing system. Attackers can leverage this weakness to run malicious JavaScript that simulates user input and installs unauthorized extensions.

GitHub has transitioned its Copilot coding assistant to a usage-based billing model that charges users based on token consumption rather than premium requests. This change, which became effective on June 1st, replaces the previous unlimited-request system with a credit allotment structure. Developers are reporting significant price hikes, with some monthly costs reportedly jumping from small flat fees to several hundred or even thousands of dollars.

Source

GitHub Copilot app is a desktop application for agentic development that provides a centralized workspace to manage AI agents across parallel workflows, integrate with GitHub issues and pull requests, and handle the entire development lifecycle without switching between terminals, IDEs, and browser tabs. The app is built on top of GitHub Copilot CLI and integrates directly with GitHub repositories. It supports Windows, macOS, and Linux, and requires a paid GitHub Copilot subscription. This article explains what the app does, how to access it, and its current limitations.

Source