The remote code execution bug, tracked as CVE-2020-1192, is exposed when Microsoft's VS Code Python extension loads workspace settings from a file from a notebook, such as Jupyter.

The updated Python extension is available for download from Microsoft's Visual Studio Code (VS Code) marketplace, where it's currently the most popular programming language by a long mile.

It comes with built-in support for JavaScript, TypeScript, and Node.js and has a rich ecosystem of extensions for other programming languages (such as C++, C#, Java, Python, PHP, and Go), runtimes ...