#vs-code-extensions

2 articles

News2

Computer screen showing Visual Studio Code with highlighted malicious code in dark lighting

Glassworm Campaign Plants 73 Malicious VS Code Extensions

Researchers discovered 73 malicious Visual Studio Code extensions in OpenVSX that activate after updates to steal sensitive data.

April 27, 11:41 PM5 min

Computer screen showing VS Code with security warning dialog in dark development environment

High

Vulnerabilities

Open VSX Registry Bug Let Malicious VS Code Extensions Bypass Security

Open VSX's pre-publish scanning pipeline contained a critical flaw that allowed malicious Visual Studio Code extensions to bypass security vetting and reach the registry.

March 27, 02:57 PM5 min