{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreiesto35yfefrjulb6glth3ug3jp4cjwivkarb7e47ezfk3dqsyyh4",
    "uri": "at://did:plc:gapzbf5nl5wxaqkqoecaeawh/app.bsky.feed.post/3mmcx2ngqjgn2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreibgfo2pbzckso2vgkfbidnpztuiqyhune5rjtrh5mmill6strsbym"
    },
    "mimeType": "image/webp",
    "size": 30656
  },
  "path": "/github-breach-tied-to-malicious-vs-code-extension-exposes-thousands-of-internal-repositories/",
  "publishedAt": "2026-05-20T18:26:28.000Z",
  "site": "https://devops.com",
  "tags": [
    "Blogs",
    "DevOps Open Source",
    "DevOps Toolbox",
    "DevSecOps",
    "Features",
    "IT Security",
    "Social - Facebook",
    "Social - LinkedIn",
    "Social - X",
    "devops",
    "enterprise security",
    "github",
    "VS Code"
  ],
  "textContent": "GitHub says attackers accessed thousands of internal repositories after a company employee’s device was compromised through a malicious Visual Studio Code extension, though the company said it has removed the malicious extension, isolated the compromised endpoint, and launched an investigation. The company confirmed that approximately 3,800 internal repositories were affected. GitHub stated that investigators have […]",
  "title": "GitHub Breach Tied to Malicious VS Code Extension Exposes Thousands of Internal Repositories"
}