1. Ruby-LSP v0.26.9 Patches Critical Code Execution Flaw in VS Code Workspace Settings
A critical security vulnerability in the Ruby-LSP extension for VS Code has been patched, exposing developers to arbitrary code execution simply by opening a malicious project. The flaw, tracked as CVE-2026-34060, resided in the handling of the `rubyLsp.branch` workspace setting. This setting was interpolated without s...