A VS Code vulnerability in GitHub.dev lets attackers steal full GitHub OAuth tokens via a single malicious link, exposing all private repositories.
The tool gathered over 29,000 downloads before the malicious npm package was identified ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results