The Eclipse Foundation, which maintains the Open VSX Registry,
has announced plans to enforce security checks before Microsoft
Visual Studio Code (VS Code) extensions are published to the
open-source repository to combat supply chain threats. The move
marks a shift from a reactive to a proactive approach to ensure
that malicious extensions don't end up getting published on the
Open VSX Registry.
Read more https://thehackernews.com/2026/02/eclipse-foundation-mandates-pre-publish.html
