Open VSX named a 2026 CODiE Award finalist
Open VSX has been named a finalist in the 2026 CODiE Awards in the Best DevOps Tool category.
Open VSX
The Eclipse Foundation Launches Open VSX Security Researcher Recognition Program to Strengthen Supply Chain Security
The initiative supports responsible disclosure by the global security research community to protect critical open source developer infrastructure.
Open VSX Registry surpasses 300 million monthly downloads, as industry leaders back critical developer infrastructure
Amazon and Cursor support investments in supply chain security, multi-region infrastructure, and long-term sustainability
Open VSX security update - October 2025
Over the past few weeks, the Open VSX team and the Eclipse Foundation have been responding to reports of leaked tokens and related malicious activity involving certain extensions hosted on the Open VSX Registry.
Eclipse Open VSX Registry Security Advisory
A vulnerability in the Eclipse Open VSX Registry’s automated publishing system could have allowed unauthorized extension uploads. It did not affect existing extensions or admin functions.
The issue was reported on May 4, 2025, fully fixed by June 24, and followed by a complete audit. No evidence of compromise was found, but 81 extensions were proactively deactivated as a precaution.
The Open VSX Registry, a Vendor-Neutral Open Source Alternative to the Visual Studio Marketplace, Gets its Own Working Group at the Eclipse Foundation
The mission of the new working group will be to manage and accelerate adoption of the Open VSX Registry, a vendor-neutral, community-supported alternative to the Microsoft Visual Studio Marketplace.
