New Flaw in IDEs Like Visual Studio Code Lets Malicious Extensions Bypass Verified Status
July 1, 2025
1 min read
●
SkillMX Editorial Desk
A new study of integrated development environments (IDEs) like Microsoft Visual Studio Code, Visual Studio, IntelliJ IDEA, and Cursor has revealed weaknesses in how they handle the extension verification process. The weaknesses enable attackers to execute malicious code on developer machines.