TGTGInsighttelegram intelligenceLIVE / telegram public index
← The Hacker News
View original
The Hacker News avatar

TGINSIGHT POST

Post #8688

@thehackernews

The Hacker News

Views9,790Post view count
PostedMar 2703/27/2026, 01:58 PM
Post content

Post content

🛑 Open VSX flaw let attackers publish malicious VS Code extensions by bypassing scans. Single boolean bug treated scan failures as “nothing to scan,” so extensions passed under load and went live. 🔗 How scan failures were misread and checks skipped → https://thehackernews.com/2026/03/open-vsx-bug-let-malicious-vs-code.html