DigiNews

Summary

The article documents an adversarial coding test used in a recruitment scenario that exploits malicious VS Code tasks.json to auto-execute remote scripts. It traces the attack path from git history to shell payloads and JWT tokens, and notes reporting actions to GitHub and Vercel. It emphasizes phishing awareness and practical defenses for organizations and job seekers.