Topic

#vscode-extension-security

1 article exploring vscode-extension-security. Expert insights and analysis from our editorial team.

Showing 1–1 of 1 articles
Related topics:
supply-chain-attack github-breach developer-tools-security team-pcp marketplace-trust

Articles

Newest first
Developer Tools

Malicious VSCode Extension Hit 3,800 Repos: What GitHub's Marketplace Trust Model Actually Verifies

A poisoned VS Code extension exfiltrated 3,800 GitHub repos through a Marketplace that verifies publisher identity but never inspects extension code and imposes no runtime.
Browse All Topics