Eclipse Foundation to require pre-publish security checks for Open VSX extensions to reduce VS Code supply-chain risk.
Microsoft has released the Copilot Studio extension for Visual Studio Code to general availability, enabling teams to build, ...
A new Visual Studio Code extension called Nogic sparked a wide-ranging Hacker News discussion, with commenters praising its ...
Security researchers found two AI-branded VS Code extensions with 1.5M installs that covertly send source code and files to ...
Marketplace that were collectively installed 1.5 million times, exfiltrate developer data to China-based servers.
GlassWorm malware is expanding to open source platforms, targeting macOS users with infostealers.
Cybersecurity researchers from Socket’s Threat Research team have identified a developer-compromise supply chain attack targeting macOS users, where ...
Two VSCode extensions are harvesting sensitive data and sending it to China.
A Microsoft Visual Studio Code extension for Moltbot turns out to actually deliver a malware payload to unsuspecting users.
A new GlassWorm malware attack through compromised OpenVSX extensions focuses on stealing passwords, crypto-wallet data, and developer credentials and configurations from macOS systems.
A compromised Open VSX publisher account was used to distribute malicious extensions in a new GlassWorm supply chain attack.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results