Friday 26 June 2026 08:16:42 GMT+02:00

Netcrook

HomeManifesto
News
Corporate Security IncidentsCloud, SaaS & Identity SecurityIndustrial Cybersecurity & Critical InfrastructureCyber Intelligence, TrendsAI Security & Agentic SystemsCyber Intelligence & Threat TrendsCyber WarfareCyber Warfare & Nation-State OperationsCyber CriminalityBreaches & Data LeaksCybercrimeMalware & BotnetsRansomware & ExtortionSecurity Awareness & Social EngineeringLegal PolicyLegal, Policy & Government CybersecurityPrivacy, Regulation & ComplianceTechnology, InnovationTechnology, Innovation & Digital InfrastructureVulnerabilities Patch ManagementResearch, Exploits & Offensive SecurityVulnerabilities & Patch Management
Techcrook
Tutte le tecnologieIdentita e accessoFirewall e reteBackup e archiviazioneEnergia e continuitaPrivacy e sicurezza fisicaLaboratorio e prototipazioneStampa e tracciabilitaTecnologia quotidiana
Geocrook
AfricaAsiaEuropeMiddle EastNorth AmericaOceaniaSouth America
WikicrookTeamAppContact
EnglishItalianoArabic
WIKICROOK

Workspace Trust

A VS Code control that limits risky actions when a folder has not been trusted.

Workspace Trust is a Visual Studio Code security control that treats an opened folder as untrusted until the user or administrator approves it. In an untrusted workspace, VS Code restricts risky behaviors such as running tasks, debugging, and some extension features that could execute code or read sensitive files.

This matters because many attacks target the developer workspace, not just the editor itself. A malicious project, cloned repository, or compromised extension can try to trigger commands, harvest secrets, or manipulate build steps when a folder opens. Workspace Trust reduces that attack surface by forcing deliberate trust decisions before active code paths are enabled. In defense, teams use it to slow down drive-by execution, limit exposure from unknown projects, and add a safety layer alongside extension allowlists, signed packages, and careful review of downloaded code.

18 articles mention this term in WIKICROOK.

  1. When a Plugin Becomes the Payload: GlassWorm and the Developer Trust Problem
  2. When the IDE Becomes the Infiltration Layer
  3. When a Repository Turns into a Trigger: The AI Toolchain Lesson Behind Miasma
  4. GitHub Became the Bait: A Developer Targeting Campaign Hides in Plain Sight
  5. Token at the Edge: Why a VS Code Proof-of-Concept Set Off Alarms Around GitHub Access
  6. VS Code’s Trust Problem: Why a Single Click Can Put GitHub Credentials at Risk
  7. One Click to a Repo Lock: The GitHub Token Trick Hiding in a Browser IDE
  8. VS Code’s One-Click Trap: Why a Developer Token Became the Prize
  9. Angular’s Editor Helper Became the Weak Link in the Developer Chain
  10. One Malicious Folder, One Developer Machine: The Angular Extension Risk Hidden in Plain Sight
  11. One Poisoned Extension, Thousands of Repositories: The Hidden Risk Inside Developer Desktops
  12. A Trusted Editor Add-On Became a Supply-Chain Trap
  13. A Trusted VS Code Add-on Became the Doorway into GitHub’s Internal Code
  14. A Trusted Extension, a Broken Trust Chain, and 3,800 Repositories in the Crosshairs
  15. The Extension Trap: How a Trusted Coding Tool Became a Repository Exfiltration Path
  16. A Trusted Editor, a Silent Extension, and Thousands of Internal Repositories at Risk
  17. Poisoned Editor Plugin Put Enterprise Repositories in the Crosshairs
  18. A Popular Developer Extension, a Quiet Update, and a Credential-Theft Risk

← WIKICROOK index