Skip to main content

Snyk Security Labs Blog Archive

Showing 25 - 26 of 26 posts

Deep dive into Visual Studio Code extension security vulnerabilities

Snyk has found severe vulnerabilities in popular VS Code extensions, enabling attackers to compromise local machines as well as build and deployment systems through a developer’s IDE. Learn how they work and how to protect your code.

Exploring intent-based Android security vulnerabilities on Google Play

Intents are used by internal components to communicate with each other as well as to access exported components of other applications, which opens the door for malicious attacks. In this post, we’ll explore intent-based Android security vulnerabilities to see why and how they work.

Page 1Page 23

Found a vulnerability? We can help you report it.

Using our form, you can disclose vulnerabilities you’ve found or vulnerabilities that are missing from the Snyk Vulnerability Database. We’ll help you verify the vulnerability,  contact the maintainer, and assign a CVE for the issue.

Before submitting a report, please review our disclosure policy, which can be found here.

Report a new vuln