Open VSX, the extension marketplace used by VS Code forks such as Cursor and Windsurf, recently fixed a critical vulnerability in its newly introduced pre-publish scanning pipeline that could allow malicious extensions to bypass security checks and go live undetected. The issue, dubbed “Open Sesame,” stemmed from a fail-open condition in the scanning workflow. While […]

The post Open VSX Scanner Vulnerability Lets Malicious Extensions Go Live appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.