SecurityWeek

VS Code Configs Expose GitHub Codespaces to Attacks

Attackers can abuse VS Code configuration files for RCE when a GitHub Codespaces user opens a repository or pull request.
Infosecurity-magazine.com

Malicious Commands in GitHub Codespaces Enable RCE

A set of attack vectors in GitHub Codespaces have been uncovered that enable remote code execution (RCE) by opening a malicious repository or pull request. The findings by Orca Security, show how ...
Neowin

Microsoft is retiring Visual Studio Codespaces, users being migrated to GitHub Codespaces

Microsoft has announced that it is retiring Visual Studio Codespaces - previously Visual Studio Online - and consolidating it into GitHub Codespaces, which is in limited public beta right now. Now, ...