Against all odds: security awareness campaign at Devconnect
You can't always get what you want. But you can hack your way to it.
vscode
4 posts
Leveraging VSCode internals to escape containers
Do you know what actually happens under the hood when VS Code or Cursor connects to a remote environment? In this article, we break down that machinery and show how attackers can abuse those internals to escape containment and bypass the very boundaries developers assume are protecting them.
A step closer to isolation —devcontainer-wizard
From the "Where you run your code?" series, here we bring you yet another article about devcontainers. This time, with the release of a new tool!
Detecting malicious VSCode extensions - an exploration
Malicious VSCode extensions pose a growing threat to developers, often hiding data exfiltration mechanisms and other dangerous payloads. Join us to learn more about them!