Comment by rbanffy
20 hours ago
Most large companies won’t allow direct access to Docker hub or PyPI, and now they’ll have to restrict access to VSCode extensions. How did the extension get poisoned?
20 hours ago
Most large companies won’t allow direct access to Docker hub or PyPI, and now they’ll have to restrict access to VSCode extensions. How did the extension get poisoned?
We run an explicit whitelist, enforced through Microsoft Entra (or was it Intune).
That’s also a nice idea.