Fake Solidity VSCode extension on Open VSX backdoors developers

A remote access trojan dubbed SleepyDuck, and disguised as the well-known Solidity extension in the Open VSX open-source ...
EDN

Makefile vs. YAML: Modernizing verification simulation flows

The article explains an alternative approach to Makefile, based on YAML, a structured and human-readable configuration format ...

Open VSX rotates tokens used in supply-chain malware attack

The Open VSX registry rotated access tokens after they were accidentally leaked by developers in public repositories and allowed threat actors to publish malicious extensions in an attempted ...
GitHub

Use a canonical misc files project for misc files in VSCode

Currently the FileBasedProgramsProjectSystem loads both genuine miscellaneous files and file based programs in mostly the same way - for each file it runs a design time build, runs restore and creates ...
GitHub

Xml syntax file might contains a typo

I suspect it contains a typo in the "begin/end" rule with "--%>" the end and name fields are nested in the repository field where I think they shouldn't be. I'm maybe wrong, it may be intended and ...