Some writing I did

Interview Study on the use of SCA tools

less than 1 minute read

In this study, we are looking for participants in an interview-based approach to investigate the use of SCA (software composition analysis) tools. The study...

Weaknesses in VS Code Extensions

3 minute read

TLDR: We found vulnerabilities in VS Code extensions and verified code execution exploits impacting more than 6 million installations. We also found that mor...