AI-Powered Code Editors Could Have Become Malware Delivery Machines: Here's What Happened
If you’re a developer using AI-powered code editors like Cursor, Windsurf, or Google Antigravity, you might want to pay attention to this one. Security researchers have uncovered a vulnerability that could have turned your trusted IDE’s extension recommendations into a malware delivery system. The good news? They caught it before the bad guys did. The Problem With Forking VSCode Here’s the thing about modern AI coding assistants: they’re basically souped-up versions of Microsoft’s Visual Studio Code. Cursor, Windsurf, Google Antigravity, Trae—they all share the same DNA. They’ve been forked from VSCode to add AI superpowers that help developers write code faster. ...