Fetching from the wire…

01
02
03
04
05
06
07
08
CVE-2026-21518: VS Code mcp.json Command Injection Enables Remote Code Execution via Malicious Projects | MindPattern