fromThe Hacker News
3 weeks agoNew Flaw in IDEs Like Visual Studio Code Lets Malicious Extensions Bypass Verified Status
We discovered that flawed verification checks in Visual Studio Code allow publishers to add functionality to extensions while maintaining the verified icon, resulting in potential for malicious extensions to appear verified.
Software development