floofloof@lemmy.ca to Programming@programming.devEnglish · 1 year agoMalicious VSCode extensions with millions of installs discoveredwww.bleepingcomputer.comexternal-linkmessage-square53fedilinkarrow-up1253arrow-down114cross-posted to: cybersecurity@sh.itjust.works
arrow-up1239arrow-down1external-linkMalicious VSCode extensions with millions of installs discoveredwww.bleepingcomputer.comfloofloof@lemmy.ca to Programming@programming.devEnglish · 1 year agomessage-square53fedilinkcross-posted to: cybersecurity@sh.itjust.works
minus-squareFizzyOrange@programming.devlinkfedilinkarrow-up3·1 year agoMicrosoft doesn’t have a vetting process for publishing extensions in the store. Maybe the failure is that people assume they do?
minus-squareMiaou@jlai.lulinkfedilinkarrow-up1·1 year agoSurely you mean “that Microsoft does not make it clear that they don’t”?
minus-squareFizzyOrange@programming.devlinkfedilinkarrow-up1·edit-21 year agoMaybe, but I think the only app store that does vet apps is the Apple one, so that should be the default expectation. And I think even they wouldn’t manually look for something like this. They’re mainly concerned about people breaking the commercial rules.
Microsoft doesn’t have a vetting process for publishing extensions in the store. Maybe the failure is that people assume they do?
Surely you mean “that Microsoft does not make it clear that they don’t”?
Maybe, but I think the only app store that does vet apps is the Apple one, so that should be the default expectation.
And I think even they wouldn’t manually look for something like this. They’re mainly concerned about people breaking the commercial rules.