Peter-118
commented
1 month ago We use this tool https://www.extensiontotal.com API to manage the risk across the organization. I think the same guy who developed it posted this research.
Open 3f6a opened 2 months ago
Peter-118
commented
1 month ago We use this tool https://www.extensiontotal.com API to manage the risk across the organization. I think the same guy who developed it posted this research.
I'm not sure if this is the right place to post this. But I've seen several articles about the poor security of extensions in the Market Place, e.g.: https://www.bleepingcomputer.com/news/security/malicious-vscode-extensions-with-millions-of-installs-discovered/
Are there any plans to address these concerns? By perhaps hardening security checks of published extensions?