A recently disclosed vulnerability in the Open VSX extension marketplace exposed a critical vulnerability in its newly introduced pre-publish scanning pipeline, allowing malicious extensions to bypass security checks and be published as “PASSED.” The issue, informally dubbed “Open Sesame,” was responsibly reported on February 8 and fixed within three days, highlighting both the severity of […] The post Open VSX Vulnerability lets malicious extension go live appeared first on Cyber Security News.