Tag
developer-tooling
Safeguard articles tagged "developer-tooling" — guides, analysis, and best practices for software supply chain and application security.
2 articles
Supply Chain Attacks
VS Code marketplace incident postmortem: what 2023-2024 actually taught us
Between 2023 and 2024 the VS Code Marketplace saw a string of typosquat, hijack, and impersonation incidents that shaped Microsoft's eventual hardening response. This is a composite postmortem of what happened, what changed, and what is still broken in 2026.
May 13, 20268 min read
Product
How the Snyk Language Server powers IDE plugins across VS...
A technical look at how Snyk's Go-based Language Server uses LSP and a delegating scanner pattern to power VS Code, JetBrains, and Eclipse plugins from one binary.
Aug 18, 20257 min read