Forum: Too Lazy BBS

Open VSX rotates access tokens used in supply-chain malware attack

From BleepingComputer to All on Sun Nov 2 17:16:51 2025

The Open VSX registry rotated access tokens after they were accidentally leaked by developers in public repositories and allowed threat actors to publish malicious extensions in an attempted supply-chain attack. [...]

https://www.bleepingcomputer.com/news/security/open-vsx-rotates-tokens-used-in-supply-chain-malware-attack/