Loading...

XML

Word

Printable

Type: Feature Request
Resolution: Done
Priority: Blocker
Fix Version/s: 3.20.0.GA
Affects Version/s: 3.17.0.GA
Component/s: Team B: Dev Spaces operator + chectl/dsc, DevWorkspace + Operator, Web Terminal + Operator, Universal Developer Image, machine-exec, dev environment config
Labels:

Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Affects:

Release Notes
Release Note Text:

Hide
= Disable "Install from VSIX..." feature in Visual Studio Code - Open Source ("Code - OSS")

Previously, users were able to manually download and install unapproved Visual Studio Code extensions in the `.vsix` format. This could lead to the installation of potentially malicious extensions.

With this release, admins can use ConfigMap to disable the *Install from VSIX...* feature and prevent the download and installation of unapproved extensions.

Show
= Disable "Install from VSIX..." feature in Visual Studio Code - Open Source ("Code - OSS") Previously, users were able to manually download and install unapproved Visual Studio Code extensions in the `.vsix` format. This could lead to the installation of potentially malicious extensions. With this release, admins can use ConfigMap to disable the *Install from VSIX...* feature and prevent the download and installation of unapproved extensions.
Release Note Type:
Enhancement
Release Note Status:
Done
Intelligence Requested:
Market:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Currently, users can manually download unapproved extensions in VSIX format from the Microsoft Marketplace or OpenVSX. They can then manually install these extensions in a Dev Spaces workspace, bypassing the need to install from an internal extension registry, which contains a curated list of extensions.

The ability to do the above circumvents security and allows users to install potentially malicious extensions.