Eclipse Foundation Revokes Leaked Open VSX Tokens Following Wiz Discovery

Source: The Hacker News | Added:

The Eclipse Foundation has revoked a limited number of tokens that were leaked in Visual Studio Code extensions after a report by Wiz highlighted security concerns. This action was prompted by the discovery of vulnerabilities in extensions from both Microsoft's VS Code Marketplace and Open VSX.

---

Impact: Visual Studio Code, Open VSX

In the Wild: Unknown

Age: Newly disclosed

Remediation: Revocation of leaked tokens

Read Full Original Article →