The Hacker News

One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens

VS Code flaw exposes GitHub OAuth tokens via one-click attack on GitHub.dev, enabling private repo access and token theft.
The Next Web

One click on GitHub.dev is all it takes to hand over your private repositories

A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.

Build 2026: Microsoft Announces GitHub Copilot App

The GitHub Copilot desktop app is like a central dashboard for managing AI agents and interacting with GitHub.
Tech Times

OpenAI Codex Computer Use Now on Windows: Foreground Takeover, Europe Excluded

OpenAI has expanded Codex from a coding assistant into a desktop-operating agent on Windows, officially documenting support ...