Fresh Wave of GlassWorm VS Code Extensions Slices Through Supply Chain

Attackers are seeding Open VSX with malicious VS Code extensions that spread malware, posing a risk to developers. This matters because it targets the software supply chain, potentially compromising many projects. Developers should be cautious when installing extensions and verify their sources. Regularly update and scan for malware to minimize the risk.