SecurityWeek

ForceMemo: Python Repositories Compromised in GlassWorm Aftermath

Hackers use credentials stolen in the GlassWorm campaign to access GitHub accounts and inject malware into Python repositories.
InfoWorld

Open VSX extensions hijacked: GlassWorm malware spreads via dependency abuse

Threat actors are publishing clean extensions that later update to depend on hidden payload packages, bypassing marketplace ...
GitHub

agent_with_http_mcp_plugin.py

The following sample demonstrates how to create a chat completion agent that answers questions about Github using a Semantic Kernel Plugin from a MCP server.