Personally, I feel the VS Code team did the right thing in pulling the extension when they realized it was potentially malicious although I do feel they would have been better served in saying that it was potentially malicious and to simply suspend it until they had confirmation of malicious intent.
I'm more interested in discussions on how this would be handled in other projects and the kind of SOPs companies may already have in place for these kind of scenarios.
RagingCactus|11 months ago
The gist of it:
> The publisher account for Material Theme and Material Theme Icons (Equinusocio) was mistakenly flagged and has now been restored.
Previous discussion here, which is also the reason why I think this resolution is relevant as well: https://news.ycombinator.com/item?id=43178831
EnnEmmEss|11 months ago
I'm more interested in discussions on how this would be handled in other projects and the kind of SOPs companies may already have in place for these kind of scenarios.