Techly NewsGet the app

Get the latest tech news

VSCode IDE Forks Expose Users To 'Recommended Extension' Attacks


An anonymous reader shares a report: Popular AI-powered integrated development environment solutions, such as Cursor, Windsurf, Google Antigravity, and Trae, recommend extensions that are non-existent in the OpenVSX registry, allowing threat actors to claim the namespace and upload malicious extensi...

None

Get the Android app

Or read this on Slashdot

Read more on:

Photo of users

users

Photo of attacks

attacks

Photo of extension

extension

Related news:

News photo

UK Government's New Pension Portal Operator Tells Users To Wait for AI Before Complaining

News photo

X blames users for Grok-generated CSAM; no fixes announced

News photo

VSCode IDE forks expose users to "recommended extension" attacks

« ChatGPT is playing doctor for a lot of US residents, and OpenAI smells money
New leak raises hopes for Galaxy S26 Edge, despite earlier doubts »