Vulnerabilities
Open VSX Registry Bug Let Malicious VS Code Extensions Bypass Security
Open VSX's pre-publish scanning pipeline contained a critical flaw that allowed malicious Visual Studio Code extensions to bypass security vetting and reach the registry.
