JavaScript Extension to Vscode

Flaws in popular VSCode extensions expose developers to attacks

Vulnerabilities with high to critical severity ratings affecting popular Visual Studio Code (VSCode) extensions collectively downloaded more than 128 million times could be exploited to steal local ...

The Hacker News

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers

GlassWorm campaign used 72 malicious Open VSX extensions and infected 151 GitHub repositories, enabling stealth supply-chain attacks on developers.

TechRadar

Malicious Microsoft VSCode AI extensions might have hit over 1.5 million users

Two VSCode extensions exfiltrated sensitive user data to Chinese servers ChatGPT – 中文版 and ChatMoss had over 1.5 million installs combined Extensions used hidden iframes, commands, and SDKs to steal ...

Some results have been hidden because they may be inaccessible to you

Show inaccessible results

Flaws in popular VSCode extensions expose developers to attacks

GlassWorm Supply-Chain Attack Abuses 72 Open VSX Extensions to Target Developers

Malicious Microsoft VSCode AI extensions might have hit over 1.5 million users

Trending now