The Hacker News

Eclipse Foundation Mandates Pre-Publish Security Checks for Open VSX Extensions

Eclipse Foundation to require pre-publish security checks for Open VSX extensions to reduce VS Code supply-chain risk.

GlassWorm Malware Hits macOS Through Trusted Open VSX Extensions

Cybersecurity researchers from Socket’s Threat Research team have identified a developer-compromise supply chain attack ...

Dangerous new malware targets macOS devices via OpenVSX extensions - here's how to stay safe

Socket notified Open VSX operators Eclipse Foundation of their findings, and the platform revoked tokens and removed the malicious releases. This doesn’t mean everyone is safe, though. Users who ...

New GlassWorm attack targets macOS via compromised OpenVSX extensions

A new GlassWorm malware attack through compromised OpenVSX extensions focuses on stealing passwords, crypto-wallet data, and developer credentials and configurations from macOS systems.
XDA Developers on MSN

4 VS Code forks built for specific tasks

The classic VS Code is great and all, but these specialized forks are better for certain programming tasks ...

源代码防泄密如何防泄密?严选5款源代码防泄密系统,高口碑

这是一款企业级源代码全生命周期安全防护平台,聚焦于解决代码在开发、测试、协作与交付过程中的泄露风险。🔍 它融合运行时动态加密、行为感知型访问控制、代码水印溯源三大核心技术,实现从编码到CI/CD的端到端安全闭环。💪 ...
Agence France-Presse

Veracode Releases Platform Enhancements as Software Supply Chain Attacks Surge

The latest enhancements to our platform empower organizations to stop third-party risk from ever entering their software code, providing them with a prevention-first approach.” Package Firewall, ...