Skip to content
The Nexus
SECURITYMay 20 · 14:48 UTCCYBERSCOOPGreg Otto

GitHub says internal repositories were taken in poisoned VS Code extension attack

GitHub internal repositories were compromised through a poisoned Visual Studio Code extension, with the company detecting and containing the compromise and rotating critical secrets. The incident underscores growing risks in software development platforms. GitHub assesses that only internal repositories were affected.

Nexus surfaces and summarizes. The full story lives at the source.

Mentioned
Spot something wrong with this article?Report a problem →
Forward this