A new and ongoing supply-chain attack is targeting developers on the OpenVSX and Microsoft Visual Studio marketplaces with ...
There isn’t a consistent threat model for extension marketplaces yet, McCarthy said, making it difficult for any platform to ...